IT Asset Declaration 2022 & Budget Survey Form 2023
Hits: 2451
1. Introduction
The purpose of this project security hardening is reducing a system's vulnerability by reducing its attack surface by CrowdStrike Installation and CyberArk Implementation
2. Objective
To reducing a system's vulnerability
3. Project Team
IT MY
CPF IT
Ms Norlina Ramli
Mr Muhd Firdaus Azmi
Ms Wan Nur Haizun
Mr Runron Thamintorn
Mr Kittipoom
4. Scope
1. Crowdstrike Installation
No
Task Description
Total Computer
1
Installation on New Computer
529
2
Installation on PM Computer
3
Installation on Existing Computer
Crowdstrike installation will continue only on new deployment computer.
2. Hardening Implementation
No
Task Description
Status
1.
Enable MFA for Forticlient VPN
25+2 licenses
18 Jun (Infra & Tech)
1 July (App & Other)
Completed
2
Housekeeping privileges account
Domain Admin
Domain Operator
Local User Operator
Local Admin
Completed
Domain Junior Admin
Domain Server Admin
Domain Server App Admin
Ongoing - 2024
3
Setup PSM Server
Completed
4
CyberArk Implementation
Total Server in CyberArk : 70 Servers Total Server not include in CyberArk : 18 Window Servers Number of Users : 3 Start pilot add domain admin or server admin
2024 Progress - Add Enterprise admin, Domain admin and Server admin follow new format name
5
Enable login FortiClient VPN using MFA Forti Token
License Purchase: 140
11 July (HR)
12 July (Account)
Enforce all VPN user using FortiToken
Completed
6
Enable MFA for Office 365
Phase 1: IT
Phase 2: User Agro and Aqua
Phase 3 User PCM and Swine
Completed
5. Activity
18 Aug 23 -Complete enable MFA Office 365 for group Agro, Aqua, PCM and Swine 12 Jul 23 -Enable MFA VPN IT,HR and Account 15 May 23 - Currently using Cyberark for Domain Admin and Server Admin account 13 Apr 23 - For previous error in cyberark already clarify with TH admin and current still on testing Domain Admin and Server Admin for login all server 29 Mar 23 - Already test the account added but got error. - Planning arrange session on 30/3/2023 with CyberArk TH Admin 15 Feb 23 - Already provide Enterprise admin, Domain admin and Server admin to TH add in CyberArk 12 Jan 23 - Session with TH team on 12/1/23 to discuss about adding the Enterprise admin, Domain admin and Server admin. 09 Nov 22 - Arrange session with TH team on 11/11/22 for Cyberark to discuss MY team to be a Cyberark admin 12 Oct 22 - Installation Crowdstrike will continue for new computer deployment - CyberArk will start pilot add domain admin or server admin 19 Sep 22 - Still ongoing installation Crowdstrike for existing & new computer 11 Aug 22 - Still ongoing installation Crowdstrike for existing & new computer - PSM Server already completed - VPN MFA already completed - 70 servers already implement in CyberArk 19 Jul 22 - Still ongoing installation Crowdstrike for existing & new computer 02 Jun 22 - Completed housekeeping privileges account - CrowdStrike installation on new, existing and PM computer