Über den Kunden
IGZ develops services for the management and optimization of processes in logistics, production, distribution, and transportation based on SAP standard software. As SAP engineers, IGZ supports companies through all phases of a project, from strategic consulting and software implementation to the integration of cutting-edge technologies.
IGZ’s approach goes far beyond traditional consulting: customers benefit from powerful, tailor-made solutions that create measurable added value for logistics and production projects. As a general contractor for intralogistics systems, IGZ also takes full responsibility for planning, implementation, assembly, installation, and after-sales support.
The company’s particular strength lies in the combination of SAP expertise and technical implementation competence, enabling IGZ to set innovative standards in production and logistics.
IT infrastructure
IGZ has a hybrid environment with an on-prem and cloud infrastructure. The on-prem environment has approximately 1,000 assets separated in a highly segmented network. Furthermore, IGZ relies on modern cloud technologies and integrated SaaS solutions from Microsoft to support digital collaboration and business processes.
Security challenges:
To comply with regulatory requirements, the systems not only had to be hardened to meet regulations (such as GDPR and ISO 27001) and CIS benchmarks, but hardening measures also needed to be continuously monitored and updated to ensure ongoing compliance. In addition, IGZ needed a solution to verify that all systems are always equipped with the latest patches.
Solution: Mondoo
Mondoo was recommended to IGZ by their IT service provider, with whom they had already successfully completed several infrastructure projects. After a Proof of Concept, IGZ chose Mondoo for its intuitiveness, customization options, and the ease of rollout.
Unified visibility: IGZ can now monitor all their business critical assets such as domain controllers and other server systems from one platform. “Mondoo was the only solution that allowed us to centrally monitor the maturity level of hardening measures across all our systems in a fast and efficient way”, says Lukas Rosner, IT Administrator at IGZ.
Compliance on auto-pilot: Mondoo automatically detects any deviations with compliance frameworks and CIS benchmarks, provides clear remediation guidance, and ensures that updates to compliance standards are reflected in real time. Matthias Schmidt, IT Administrator at IGZ: “It’s particularly helpful that any updates to the frameworks are automatically reflected in Mondoo and that the registered IGZ systems are checked against the latest versions.”
Remediation guidance: Mondoo not only informs us of any additional hardening measures that are needed, but also provides step-by-step guidance on how to implement them. This saves us a lot of investigation work.
We chose Mondoo for its intuitiveness, customization options, and the ease of rollout.
Matthias Schmidt, IT Administrator at IGZ
Implementation
The deployment of Mondoo at IGZ was quick and straightforward. Mondoo provided installation scripts for deployment to the client systems, which IGZ rolled out using their existing software distribution. Specific user training was not necessary. The users of the solution configured and rolled out Mondoo in-house.
Results
With Mondoo, IGZ achieved:
Improved security: In addition to the strict network segmentation that was already in place and greatly limited any lateral movement, Mondoo’s system hardening further reduced the attack surface.
Continuous compliance: With Mondoo, IGZ has a consistent, transparent, and fully auditable security posture that ensures compliance with all relevant standards, such as GDPR, ISO 27001, and CIS benchmarks.
Faster remediation: Mondoo not only provides recommended actions but also, in some cases, directly supplies the appropriate PowerShell commands. This significantly reduces manual effort and accelerates the remediation of vulnerabilities.
Mondoo has helped us significantly improve the security level of our IT infrastructure.
Lukas Rosner, IT Administrator at IGZ
Conclusion
The IGZ cyber team regularly reviews the Mondoo dashboard to get a quick overview of their security status. This includes checking the security ratings of individual systems as well as reviewing any alerts—such as newly discovered vulnerabilities or required hardening actions. If adjustments are necessary, they are promptly evaluated and addressed based on the provided remediation guidance. Additionally, IGZ plans to use Mondoo to allow their Information Security Officer (ISO) to extract relevant information for potential audits.
Matthias Schmidt: “We recommend Mondoo for any organization that takes IT security and resilience seriously—regardless of size or industry. Whether it's a mid-sized company looking to improve its infrastructure hardening or a large enterprise aiming to maintain compliance across complex environments, Mondoo offers clear visibility, actionable insights, and automation that help reduce attack surfaces and strengthen overall security posture.”
Lukas Rosner: “We’re very satisfied with Mondoo's customer support. We really value the ability to engage directly with the Mondoo team, for example to submit feature requests. So far, all inquiries have been handled within a few hours, and in some cases resolved immediately.”
We recommend Mondoo for any organization that takes IT security and resilience seriously—regardless of size or industry.
Matthias Schmidt, IT Administrator at IGZ
Lesen Sie weitere Anwenderberichte:
