Cultural Organization [Anonymous]

This Project Galileo participant was one of the first to take advantage of new Zero Trust tools announced during Impact Week 2022. They have elected to remain anonymous to avoid sharing details about their security stack and overall readiness.

Roadblocks to staying online

This century-old nonprofit provides cultural education and events, with much of it available for free online. While carrying out its mission to inspire and educate, however, its team has faced security threats from internal and external sources. Before joining Project Galileo, they had problems with long site outages, which restricted public access to educational resources and the ability to promote events.

Starting the Zero Trust journey

They applied to Project Galileo in August 2022 and were quickly approved by the program’s partners. According to the engineer who is responsible for maintaining and architecting the organization’s technology infrastructure, “We recognized Cloudflare’s lead and prominence in the emerging Zero Trust / secure DNS market, and were excited to find Project Galileo. We immediately saw how the program would make securing our environment so much easier.”

Since they operate with a lean staff and do not have the budget or headcount for a full security operations center (SOC), tools via Project Galileo help fill this gap. For example, Cloudflare DNS simplifies the process of making changes to support remote workers. According to the engineer, “Cloudflare is enabling me, as a one-man IT team, to manage the threats a global organization faces daily.”

A user-friendly interface also helps with handling the site’s security; the engineer finds that using the Cloudflare dashboard for DNS and Zero Trust is more intuitive than other security tools he has used.

Like many other nonprofits, the organization is a hybrid workplace. Staff needs to be able to connect to data and applications — with the right level of permissions — as part of their programs and public outreach. Before adopting Zero Trust tools, the number one cause of IT tickets was an inability to access resources. This occasionally caused problems for important deadlines, such as for in-person events.

The organization’s engineer adds, “Cloudflare Zero Trust protects our network and mobile workforce by providing secure, auditable access to our work resources.”

The onboarding experience

Their website experiences monthly traffic of millions of requests per month and more than 100,000 unique visitors. In the first three months of implementing a Zero Trust architecture, they used Cloudflare tools to block more than 66 security threats and 4,131 malicious DNS requests.

Resources they find particularly useful include:

  • WARP, a device client, improves secure access across all platforms, including laptops and smartphones
  • Cloudflare Access provides a one-stop portal for redirecting network addresses on demand

What’s next

The organization hopes to continue implementing more tools and get farther in their Zero Trust journey. Future goals include being able to block access to SaaS applications like Google Drive or Box from personal devices so there is one fewer attack vector to worry about.

According to the organization’s engineer, “I would be hard-pressed to perform IT functions for our hybrid staff without Cloudflare. Cloudflare DNS and Zero Trust have enabled me to look forward to a future without Microsoft Servers, and reallocating those funds to software and coding efforts that expand our cultural programs.”