- Home
- References
Bachner Elektro GmbH & Co. KG
Bachner Elektro GmbH & Co. KG has been steadily expanding its range of services for over 100 years and adding the latest technologies. The parent company provides the core competencies of energy technology, the subsidiaries are firm in alternative energy generation and storage as well as combined heat and power. The major customers are at home in the topics of the future: e-mobility, smart grid and Industry 4.0, artificial intelligence and fast internet. The Bachner Group operates at 14 locations in Germany, Austria and the USA. We currently employ over 750 people.
Customer since:
2018
Industry:
Electrical service provider
City:
Mainburg
With SIEM to efficient IT operations
Requirements
Bachner decided to put monitoring and reporting to the test and replace the existing isolated and legacy solutions with a modern, holistic umbrella platform for SIEM, IT operations and reporting. The monitoring landscape was to be sustainably expanded and operational and security-relevant data from a wide range of IT systems consolidated.
Services & Solutions
- The customer's assets and requirements were analyzed. The project team then defined the scope of services for the new solution and developed a corresponding migration concept. At the heart of the solution is Splunk Enterprise, one of the market's leading data platforms. The software acquires, indexes, processes and analyzes relevant log files from the existing ATP platforms, firewalls, SD-WAN consoles and network management appliances. The analysis results are then graphically processed and exported to customizable dashboards.
- To make the most of the incoming flood of data, the project team also implemented the CESAR app developed by Controlware based on the Splunk platform. This extends Splunk Enterprise out-of-the-box with over 20 preconfigured use cases from the areas of AD, server, M365, firewall, proxy and mail and enables the customer to obtain reliable and resilient results from its SIEM in the shortest possible time.
- After the first year of operation, the data volume in the SIEM area had more than doubled and in order to increase scalability, the on-premises Splunk Enterprise platform was migrated to the Splunk Cloud. This cloud-based variant of the solution offers an almost identical range of functions, but does not require any local components at all, and the log files are also stored entirely in the cloud.
Advantages & Benefits
- The SIEM platform based on Splunk Enterprise enables Bachner to keep a constant eye on the complex IT infrastructure at six locations in Germany and one each in Austria and the USA and to optimize it continuously.
- The introduction of the Splunk solution gives the customer's IT team a detailed overview of the IT landscape and enables them to localize optimization potential and potential weak points. New systems can be easily and quickly integrated into the solution as needed without changing the configuration.
- With the addition of the CESAR App, most, relevant use cases can be bundled compactly and conveniently and help, for example, in handling alarms, scheduling backups and monitoring compliance and audit status.
- Through the well thought-out use of use cases and the consistent correlation of analysis results, it is possible for Bachner to generate potentially growing added value without making additional investments.
- With the platform solution, the customer has created a very robust foundation for new innovation projects and can use IT better than ever as a business driver for its business.
Solution partner:
Splunk Inc.
Splunk is a primary Big Data analysis tool without an underlying database. Splunk indexes all ASCII containing and delimited machine data. Splunk thus makes unstructured data (data that is not stored in a DB) accessible and usable for the enterprise.
Controlware has been an Elite Reseller since 2023. Previously, MSP Elite status was achieved in 2020. These partner statuses, combined with our certified Splunk specialists, qualify Controlware to provide the best possible support for Splunk Enterprise customers and enable it to effectively assist in monitoring and evaluating large volumes of data and set the course for efficient IT operations.