SAP Engineering, Logistics, ManufacturingIGZ hardens its entire IT Infrastructure with Mondoo
How a SAP engineering company significantly improved the security level of their IT infrastructure.
About the Customer
IGZ develops services for the management and optimization of processes in logistics, production, distribution, and transportation based on SAP standard software. As SAP engineers, IGZ supports companies through all phases of a project, from strategic consulting and software implementation to the integration of cutting-edge technologies.
IGZ's approach goes far beyond traditional consulting: customers benefit from powerful, tailor-made solutions that create measurable added value for logistics and production projects. As a general contractor for intralogistics systems, IGZ also takes full responsibility for planning, implementation, assembly, installation, and after-sales support.
The company's particular strength lies in the combination of SAP expertise and technical implementation competence, enabling IGZ to set innovative standards in production and logistics.
IT Infrastructure
IGZ has a hybrid environment with an on-prem and cloud infrastructure. The on-prem environment has approximately 1,000 assets separated in a highly segmented network.
Furthermore, IGZ relies on modern cloud technologies and integrated SaaS solutions from Microsoft to support digital collaboration and business processes.
Security Challenges
To comply with regulatory requirements, the systems not only had to be hardened to meet regulations (such as GDPR and ISO 27001) and CIS benchmarks, but hardening measures also needed to be continuously monitored and updated to ensure ongoing compliance. In addition, IGZ needed a solution to verify that all systems are always equipped with the latest patches.
Solution: Mondoo
Mondoo was recommended to IGZ by their IT service provider, with whom they had already successfully completed several infrastructure projects. After a Proof of Concept, IGZ chose Mondoo for its intuitiveness, customization options, and the ease of rollout.
Unified Visibility
IGZ can now monitor all their business critical assets such as domain controllers and other server systems from one platform.
“Mondoo was the only solution that allowed us to centrally monitor the maturity level of hardening measures across all our systems in a fast and efficient way.”
— Lukas Rosner, IT Administrator at IGZ
Compliance on Auto-Pilot
Mondoo automatically detects any deviations with compliance frameworks and CIS benchmarks, provides clear remediation guidance, and ensures that updates to compliance standards are reflected in real time.
“It's particularly helpful that any updates to the frameworks are automatically reflected in Mondoo and that the registered IGZ systems are checked against the latest versions.”
— Matthias Schmidt, IT Administrator at IGZ
Remediation Guidance
Mondoo not only informs IGZ of any additional hardening measures that are needed, but also provides step-by-step guidance on how to implement them. This saves the organization a lot of investigation work.
“We chose Mondoo for its intuitiveness, customization options, and the ease of rollout.”
— Matthias Schmidt, IT Administrator at IGZ
Implementation
The deployment of Mondoo at IGZ was quick and straightforward. Mondoo provided installation scripts for deployment to the client systems, which IGZ rolled out using their existing software distribution. Specific user training was not necessary. The users of the solution configured and rolled out Mondoo in-house.
Results
With Mondoo, IGZ achieved:
“Mondoo has helped us significantly improve the security level of our IT infrastructure.”
— Lukas Rosner, IT Administrator at IGZ
Conclusion
The IGZ cyber team regularly reviews the Mondoo dashboard to get a quick overview of their security status. This includes checking the security ratings of individual systems as well as reviewing any alerts—such as newly discovered vulnerabilities or required hardening actions. If adjustments are necessary, they are promptly evaluated and addressed based on the provided remediation guidance.
Additionally, IGZ plans to use Mondoo to allow their Information Security Officer (ISO) to extract relevant information for potential audits.
“We recommend Mondoo for any organization that takes IT security and resilience seriously—regardless of size or industry. Whether it's a mid-sized company looking to improve its infrastructure hardening or a large enterprise aiming to maintain compliance across complex environments, Mondoo offers clear visibility, actionable insights, and automation that help reduce attack surfaces and strengthen overall security posture.”
“We're very satisfied with Mondoo's customer support. We really value the ability to engage directly with the Mondoo team, for example to submit feature requests. So far, all inquiries have been handled within a few hours, and in some cases resolved immediately.”
Ready to Transform Your Security?
See how Mondoo can help your organization achieve similar results.