Zero Trust Security Overhaul
A consortium of three regional banks operating across Kenya, Uganda, and Tanzania needed to unify their security posture ahead of a regulatory audit. With 50+ branch offices, 3,000 employees, and a fragmented identity management system, the attack surface was vast and the compliance gap critical.
We deployed a comprehensive Zero Trust architecture built on ManageEngine's security stack — Log360 for unified SIEM, AD360 for identity lifecycle management, and PAM360 for privileged access control. Every user, device, and application was enrolled in an adaptive authentication framework that adjusted MFA requirements based on risk context.
Key Deliverables
- Unified SIEM monitoring across 500+ log sources with real-time correlation
- Adaptive MFA and SSO for 3,000+ employees across 3 countries
- Privileged session recording and just-in-time access elevation
- Automated compliance reporting for SOC 2, ISO 27001, and Kenya DPA
The SIEM implementation correlated logs from 500+ sources in real-time, reducing mean-time-to-detection from 48 hours to under 15 minutes. Automated compliance reporting generated audit-ready documentation for SOC 2, ISO 27001, and Kenya's Data Protection Act — eliminating 200+ hours of manual reporting per quarter.
Technologies Used
- Log360
- AD360
- PAM360
- Azure AD
Project Details
