With more than 20 years of experience in microbial fermentation for oral- and injectable-grade, microbial-derived biopharmaceuticals, Gnosis is a leading manufacturer of active and functional ingredients. The company has locations in Italy, Switzerland, the U.S., and China.
A Growing Attack Surface
Gnosis has grown rapidly, and with growth comes an increased attack surface. Zero-day and other advanced threats were increasing, and as a pharmaceutical company, Gnosis must comply with strict government security regulations. Authorities are increasing their focus on system security to include facilities such as laboratories and manufacturing facilities, but Gnosis’ legacy systems were not able to prevent advanced threats from gaining access.
Because Gnosis had expanded dramatically, it needed to implement a more efficient, consolidated security solution that could protect the network, data, and communications between headquarters and other sites. It began looking for a next-generation solution as protection from advanced threats against employees, visitors, and suppliers, as well as websites and outgoing communications, such as email.
Choosing Comprehensive Protection
Gnosis evaluated the cybersecurity providers that are listed in the Gartner Magic Quadrant. After narrowing its choices, Gnosis chose Check Point SandBlast Zero- Day Protection to secure its networks and data with protection against zero-day threats. It also deployed Check Point Next Generation Threat Prevention (NGTP) with multi-layered protection from known, signature-based threats.
Gnosis uses Check Point firewall services, app control, intrusion prevention, perimeter antivirus, antibot, antispam and URL filtering capabilities. It also adopted Threat Emulation and Threat Extraction technologies, which include evasion-resistant CPU-level exploit detection, machine learning, and Push-Forward Adobe Flash emulation.
In addition to the Next Generation Threat Prevention capabilities that protect against all known threats, Gnosis chose SandBlast Zero-Day Protection, which protects SMTP, HTTP, and HTTPS traffic from all unknown threats—zero-day, cryptolocker, Advanced Persistent Threats (APT), and others. CPU Level Protection blocks malwares intended to bypass sandbox technologies protection. These features ensure a high level of protection for Gnosis.
Threat Extraction delivers an immediate, preemptive, 100% sanitized version of a file, allowing business continuity in a secured environment, ensuring Gnosis’ high level of customer experience.
Today, Gnosis is able to protect users with specific Internet browsing policies defined by department. It has ensured security for VPN traffic between its locations, and URL and web filtering prevent junkware and threats from gaining access to the company’s network. For a small IT team, having all of these capabilities in a single solution has greatly simplified management while improving protection.
Investment in Reliability
“At Gnosis we pay attention to security needs, which is why we turned to Check Point,” said Marco Sandrini, ICT Manager of Gnosis. “The capabilities offered by Check Point, combined with the ability to control everything from a single dashboard at headquarters, were the elements that guided us in the selection. We are aware that the ROI of a security deployment is difficult to quantify, because the harm is potentially irreparable, so Check Point is an investment in reliability and security.”