Client Background
The client is prominent in the realm of Demand Side Platforms (DSP) for Programmatic Advertising, boasting a global presence spanning 11 data centers and over 5000 systems, with a staggering 60 PB of Hadoop data.The Challenges
The client grappled with challenges concerning load balancing and server weights for over 7000 internal DNS records, precipitating concerns regarding reliability, service delivery, and potential security vulnerabilities.
The client’s challenges called for the imperative to enhance perimeter security. The client also sought to streamline deployment processes, facilitating on-demand commissioning of critical components such as bidders, Adservers, Hadoop nodes, analytics, and revenue recognition services. Additionally, they aimed to ensure thorough monitoring of key performance indicators (KPIs) and automate infrastructure provisioning and patching. Addressing known issues promptly through automated resolutions triggered by events was another priority. Furthermore, the client sought to implement automated security protocols throughout the system.
Key Solutions
In response to these challenges, the client enlisted Xoriant as its technology partner, leveraging its extensive experience, expertise, and longstanding relationship with AWS as an Advanced Consulting Partner. The pivotal contributions made by Xoriant encompassed:
- Architecting and deploying 70% of an automated DevSecOps lifecycle using a proprietary solution.
- Implementing Infrastructure as Code methodologies utilizing tools such as Kickstart, Python Fabric, Puppet, a RoR-based CMDB, Hiera, and Ansible for efficient infrastructure management.
- Leveraging Monitoring as Code to oversee services and infrastructure, incorporating automated workflows for incident remediation via Rundeck, Nagios, and Thruk.
- Employing Security as Code paradigms to enforce security controls across the infrastructure, encompassing network ACLs, HIDs implementation, firewall configurations, and more..
- Automating and fortifying certificate management, session management, and credential management through Security as Code methodologies, leveraging HashiCorp Vault and LetsEncrypt.
- Managing dynamic updates to DNS through custom functions in Ruby invoked by Puppet running on DNS servers.
Business Benefits
The implementation of Xoriant's comprehensive solutions yielded substantial business benefits for the client, including:
Greater Operational Efficiency and Downtime Minimization: A remarkable 70% reduction in mean time to repair, enhancing operational efficiency and minimizing downtime.
Increased Agility and Responsiveness: Drastic reduction in provisioning time for multiple services, transitioning from hours to mere minutes, thereby facilitating agility and responsiveness.
- Tangible Financial Gains: Cost savings amounting to $150,000 annually, demonstrating tangible financial gains resulting from optimized operations.
- Fortified Security Posture and Asset Protection: An impressive 80% reduction in threats and attacks, fortifying the client's security posture and safeguarding critical assets.
- Enhanced Client Trust: Strengthened SSL protocols ensuring the secure delivery of ads, bolstering client trust and confidence.
- Continuous Protection with Facilitated Zero-Day Patching: Facilitated zero-day patching across all systems, enhancing resilience against emerging vulnerabilities and ensuring continuous protection.
- Continuous Protection with Facilitated Zero-Day Patching: Facilitated zero-day patching across all systems, enhancing resilience against emerging vulnerabilities and ensuring continuous protection.
Client Testimonial
Continuous Protection with Facilitated Zero-Day Patching: Facilitated zero-day patching across all systems, enhancing resilience against emerging vulnerabilities and ensuring continuous protection.
Technology Stack
Ruby on Rails | Puppet libraries for CMDB | Puppet | Hiera | Git | Gerrit | Jenkins | SonarQube | Selenium SE | OpenGrok | Rundeck | Nagios Grafana | Graphite | ELK | Jira | Fisheye | Nagger | Catchpoint | New Relic | Docker | Kubernetes | HashiCorp Vault | AWS