Vinci Energies

How Vinci Energies Achieved Strong Security Parameters On Its Ever-evolving Active Directory Infrastructures

Mergers & Acquisitions

Founded more than a century ago, VINCI Energies has become a world-leading expert in digital transformation and energy transition. It operates in 52 countries with 1,600 business units and more than 64,000 employees. With a revenue of €10.2 billion, including 48% outside France, VINCI Energies is an indisputable leader in its field.

Challenges

VINCI Energies has pursued its expansion via organic growth and a strong acquisition strategy. In 2017, VINCI Energies purchased more than 30 companies headquartered all around the world. This tremendous expansion led to more complex IT environments staffed by internationally dispersed teams. Unfortunately, incorporation of foreign resources often introduces various security risks (such as misconfigurations or illegitimate access rights) to Active Directory environments. Due to AD design, these issues can endanger the entire information system.

VINCI Energies has established strong security parameters for its main Active Directory infrastructures through its ambitious security programs, teams, and tools exclusively focused on the administration of Active Directory infrastructures. These initial processes required significant time and effort.

To maintain these parameters and to safely integrate acquired resources into the consolidated perimeter, the company expressed its need to streamline the integration process of new entities while maintaining its level of security over the long term.

Solutions

Tenable’s solution was simple and easy to implement. Deploying Tenable Identity Exposure (formerly Tenable.ad) took only 14 days, after which VINCI Energies’ team could access web-based interfaces viewable on any device, including indicators of exposure, tailor-made recommendations, and real- time analyses. The deployment only required the presence of two part-time VINCI Energies employees.

Tenable Identity Exposure’s remote-enclave solution was the perfect match for VINCI Energies’ needs.

Using the consolidated dashboard, VINCI Energies’ top management and security teams could maintain a continuous global overview of their Active Directory’s security level across every site worldwide. Employing Tenable Identity Exposure's instant security assessment, VINCI Energies was, for the first time, able to assess the security of new entities before connecting them to the company’s information system.

Thanks to the real-time security monitoring of Tenable Identity Exposure, VINCI Energies’ security team was also able to evaluate implementation of remediation measures, allowing them to choose the most appropriate time to incorporate new organizations into the global infrastructure.

Result

Flawless integration of new companies

Ensuring efficient business activity without impeding cybersecurity policies was essential for VINCI Energies, and Tenable Identity Exposure made this possible. Using the software’s native Indicators-of-Exposure, VINCI Energies’ security teams were able to identify every attack vector that could be used against their new resources within a minute. The product proved a cost-effective solution, as there was no more need for individual audits. Additionally, the decision-oriented dashboard made it fast and easy to monitor the security maturity of new entrants. Tenable Identity Exposure is by far the easiest AD security solution to implement. Deployment is instant, agentless, and requires no admin privilege.

Continuous and global control for AD security risks

AD architecture is the cornerstone of all IT infrastructures, and attackers know this. They continuously look for new ways to jeopardize these infrastructures and access critical assets. Most of the companies acquired by VINCI Energies have neither the time nor the internal expertise to stay updated on the latest and most advanced AD vector attacks. Thanks to its dedicated high-level expert team, Tenable stays on the cutting edge, ensuring the highest level of security for acquired AD infrastructures.

Tenable’s products are frequently updated to reflect the ever-changing cyber world. Having chosen Tenable Identity Exposure’s remote enclave architecture solution, VINCI Energies receives all updates automatically at no additional cost. As a result, VINCI Energies can focus on its core business activities.

Modern Active Directory security enforcement

VINCI Energies is always in search of excellence and, with Tenable Identity Exposure, they achieve it. Leveraging real-time monitoring, potential threats are instantly highlighted and alerts are sent with in-context and dynamic remediation plans so executives can make immediate, informed decisions. This allows quick responses to security issues and ensures VINCI Energies’ Active Directory infrastructures are the gold standard for security.