This case study revolves around the development of a Continuous Control Monitoring Tool by Znifa in collaboration with Quod Orbis, a UK-based Cyber Security Product Company. The tool aimed to streamline security controls and improve efficiency in security audits by automating control monitoring and evidence management processes.
Znifa's Continuous Control Monitoring Tool leveraged a combination of cutting-edge technologies, including GoLang, Apache Nifi, Elastic Search, and Grafana. The tool facilitated data integration from various source systems using Apache Nifi, extracting relevant information based on search criteria, and inserting it into a centralized platform database. The platform's dashboard, built with GoLang, provided visual charts and insights to monitor security controls effectively. Additionally, Znifa worked closely with the Quod Orbis team to onboard customers and customize the tool for their specific environments. The integration of AWS, Bitbucket, Jira, Confluence, and MySQL ensured a robust and scalable solution.
The development team of Znifa consisted of two members who actively participated in building the Continuous Control Monitoring Tool. They collaborated with Quod Orbis, leveraging their expertise in GoLang, Apache Nifi, Elastic Search, and other relevant technologies. Their contributions were vital in the successful implementation of the tool and its integration with diverse customer environments.
The key challenges addressed during the development of the Continuous Control Monitoring Tool were:
Znifa's development team collaborated closely with Quod Orbis to implement the Continuous Control Monitoring Tool. They utilized GoLang, Apache Nifi, Elastic Search, Grafana, AWS, and other technologies to build a robust solution. Data integration from various source systems was achieved through Apache Nifi, and the extracted data was stored in a centralized platform database. The platform's dashboard, developed using GoLang, provided intuitive charts and visualizations for efficient monitoring of security controls. The tool was implemented following agile development methodologies, ensuring iterative improvements and alignment with customer needs.
The implementation of Znifa's Continuous Control Monitoring Tool brought significant improvements to the security control monitoring and audit processes. While specific data figures are unavailable, the tool demonstrated the following benefits: