Background
The Port of Antwerp Bruges sits at the mouth of the Scheldt River in the Flanders region of Belgium. As the second busiest and largest port in Europe and Belgium’s primary economic driver, it is a crucial hub in the continent’s supply chain and global trade. It boasts the largest port locks in the world and is the fourteenth most active port in the world. With more than two decades of experience in the industry, CISO Yannick Herrebaut has helped the port pioneer new technologies and develop a reputation for sustainability and innovation, supporting a secure, redundant digital infrastructure that enables the port to operate 24/7/365.
The Challenge
As a critical infrastructure organization, the port’s primary motivation for seeking a new solution was regulatory compliance with the NIS 1 directive, which constituted the first cybersecurity legislation the port authority had to follow. In selecting a framework to guide their efforts, they chose the well-known CIS Controls, where the first two controls pertain specifically to hardware asset management and software asset management. The port quickly realized that while they had various systems containing parts of their asset information, they lacked a holistic view of everything within their vast and dynamic environment.
Challenges
-
Maintaining an accurate and up-to-date inventory of all assets -
Identifying unused and end-of-life assets in the digital estate
-
Complying with increasing European Union (EU) cybersecurity regulations
-
Receiving alerts on all security and configuration issues resulting in alert fatigue
The Results
-
Detected unwanted devices on the network -
Uncovered usage and device data for costly contracts and software licenses
-
Surfaced end-of-life builds within the digital estate
-
Uncovered laptops that lack endpoint protection