Swissport Reinvents Global Ops with Unified SASE Stack

In SwissportThe world, security and network strengthening provides more customers to serve and grow.

Swissport’s global IT operations began to expose the strikes of security and inheritance systems for the security and network, which have become responsible for the company. Higher management saw that centralized visibility was a rapid problem, that he quickly moved them.

Swissort’s growth has left the inheritance systems

The security and network problems facing Svissport began to multiply as the expansion of work. Legacy systems prevented customers, to provide global locations and expand the work. The high management team told Venturebeat that Ventureat told Ventureat that the team was headed by the team to review the new alternatives of the team.

In 2024, Swissport presented ground services for 247 million airline passengers, 117 trucks operated in more than five million tons of air loads and served in 279 airline in 279 airports in six continents. As the world’s largest provider, in the aviation industry, a nuclear part of how the svissport’s customers are superior, combine and provide global IT operations. More than 26,000 users, including land crew and remote workers, table shares for a business.

“The greatest difficulty was not just visible – it was consistent,” Giles Ashton-Roberts, General Information Security Officer in Swissport. “We had to combine how we applied the security between hundreds of sites without slow us down.”

From the fragmented infrastructure to a scar

“We are really 24/7 business. There is always a peak time in the world, and our network is both safe and available,” he said. “This means standardization of security and to make sure that each user and every device is covered.

Legacy systems were not a scale fast enough to keep up with the rapid expansion pace of Svissport. Legacy systems, along with fragmented infrastructure, slow growth and created potential security and network problems. SWISTPORT, security and network stacks, broken virtual personal networks (VPN), allegedly ordered to replace separate management and inappropriate policy implementation with a completely new SASE architecture.

“Prior to this change, we managed different systems between different policies and various sites, and the visibility was broken,” said Thorp. “Now we operate in a set of security policy in the world and can sleep at night without knowing the environmental safe.”

Regardless of a hipht kiosk or hybrid business device at the airport, now aware of the identity, constantly applied to a cloud-native SASE platform, constantly risky and real-time. Zero confidence is applied on every end point and interaction, the flexibility and interaction giving rapidly to grow rapidly to grow rapidly.

Why Same is the basis of Svissport’s architectural overhaul

Swissport’s decision to adopt the SASE architecture emphasizes the importance of maintaining real-time reaction, transparency and accuracy to maintain numerous customer relations in the world. The advantage of global aviation services occurs when each operation facility has the necessary information. Sase helps Swissport a unified command of customers to be an excellent purpose on behalf of customers.

VentureBeat sees the benefits of delivering the inheritance systems outside the moderate architecture. The data can reach faster and more accurate and more accurate and more accurate, reaching off offices and places from another job, and can be linked to extensive teams and get a larger return of invested capital (ROIC).

VentureBeat, this day, today sees this play throughout the businesses, which geographically improve the combination of various networks and directly affects the income of different networks. The SVissPort’s SASE strategy is a single architecture, providing more reliable, real-time communication within each location and network, more than 320 locations within each location and network.

In determining the strategy of the SASE, Swissport preferred a sase platform of a cloud-native. Burnisher Notes include this approach, including a combination of platform, simplified policy control and adaptable identity warning.

Swissport did the necessary research between all SECAs offering zero confidence and offering zero confidence as part of architecture CATO networks For a single management plane, a single information lake, global participation (POP) and the program of the extensive field network (SD-WAN) and security for safety and security. Thorp, a significant motivation for the adoption of an SASE platform, each of them said he needs to move away from supporting many inherited platforms with its unique configuration. “Different platforms are required to eliminate problems and the security of security is difficult,” he said.

“CATO’s TLS inspection allows you to check the encrypted traffic by avoiding unplanned service violations,” said Ashton-Roberts. “Our security posture was a great improvement.” Transportation layer of security (TLS) is the center to protect SWISTPORT network and security infrastructure. Encryption and Encryption TLS and Safe Sockets Layer (SSL) traffic is important in traffic in Swissport’s Sase infrastructure as it provides information provided and identify potential threats. TLS analyzes the content of each encrypted message to detect other harmful activities that can damage the inspection, harmful program, data exfiltration or more damage.

Five lessons from Swissport’s Sazeprint

While trying to connect the safe service edge of most enterprises (SSE), SD-WAN and several vendors, SCissport, security technology teams tries to collapse, political execution and security directly to collapse in the network fabric directly.

Ashton-Roberts and Thorp, Venturebeat said that Sazah’s global IT operations were needed to appear for the use of global IT operations smoothly. At the same time, zero confidence applies the least privileges and protects the identities and roles of employees and roles in assets, resources and most importantly, employees and roles.

Swissport’s Sase PlanPrint includes the following five principles:

1. Immediately moves zero zero trust until the end. Swissport applies zero confidence in each edge and end point. For the risk, each session continuously replaced VPNs with a fully approved, segmented and adaptive network fabric. “Within 15 minutes, our team has set the excessive database traffic, blocked the device and restored normal operations – said something that would take us a few days ago,” said Thorp Rentureat.
2. Global security becomes easier when politics is unified. Swissport’s inheritance systems, each created in different periods and each of the multiprotocolic labeling (MPLS) was a patch of firewalls, each created with each of the compatible policies and stable friction. Now a single policy framework manages network access between Amazon Web Services (AWS), Microsoft Azure, Cloud Saas applications and extraneous systems. There is a logic or textbook speed that belongs to the ground, simply does not control real time. Burnisher Forecasts by 2027, 40% Location-agnostic execution of large enterprises Zero trust network (ZTNA) as foundation, less 10% In 2024. Swissport is already working on the growing complexity in this model.
3. Real-time view is a business accelerator driving results and ROI. Legacy Systems left Svissport blind for domain threats. It took days to coordinate the root cause. Now, from the airport terminals, all traffic from cloud saas applications are discharged into the lake of a single information that supports all traffic, sustainable, role-based access control (RBAC) and threatening analysts. “To determine link problems, analyze traffic rules and our network is very easy to protect from a single interface,” Thorp said. According to BurnisherFewer than half of the sellers provide users, devices and uniform observation throughout applications. Swissport put it in the founder.
4. Decrypt everything, break anything: safe TLS on scale. The encrypted traffic is a new blind point. TLS verification to prevent many enterprises still delay or applying. Swissport chose unlike. By implementing the full inline TLS inspection along the plush, Swissport protects the ability to appear in encrypted threats without disrupting the mission-critical aviation systems. Most SSE and ZTNA sellers still have partial encryption or rely on bypass tunnels. Swissport, full inspection, even high sensitivity, is also accessible in highly available environments.
5. An SASE platform earns faster work. Swissport did not add more vendors; They combined them. An SASE platform replaced SD-WAN techniques, VPN concentrates and a slip of standalone safety vehicles. The result? Sites come online for hours, not weeks. New users are immediately protected. Policy changes are spread in the world in a few minutes. Gartistic Projects 65% All SD-WAN purchases will be combined to single vendor SASE platforms by 2027 20% In 2024. Swissport did not wait. Not a bolt, not in global flexibility, and it has fixed the foundation.