ATPCO Using Sysdig to Monitor and Secure Travel Data Services on Red Hat OpenShift.

As part of their cloud transformation efforts, ATPCO engaged the Sysdig Cloud-Native Visibility and Security Platform, along with the Red Hat OpenShift Container Platform built on Kubernetes. Together, Sysdig and Red Hat help simplify the complicated tasks of securing containers, understanding application behavior, and capturing detailed health, risk, and performance data. We spoke to the ATPCO Team and learned how Sysdig addressed their needs.

CASE STUDY ATPCO: Using About ATPCO.

Sysdig to ATPCO, is a privately held corporation that Monitor and collects and distributes fare and fare-re- lated data for the and travel indus- Secure Travel try. Their mission is to be the airline indus- " The ATPCO system try's trusted partner in driving innovation, Data Services reducing complexity, and delivering net- needs to be up and on Red Hat work economics to the entire distribution running 365, 24/7. If ecosystem through standards, technol- an app goes down the OpenShift. ogy, and effective governance. industry is in chaos. Founded over 50 years ago and owned by With containers, we some of the world’s major , ATPCO blends reliable data and systems with can spin up or shut innovative technology to lead the indus- down in seconds, try into the next generation of distribution through the smart connection of content and the Sysdig through all its channels. platform helps us maintain thousands ATPCO currently works with more than 430 airlines worldwide and supplies the of containers." industry’s intermediated fare data to all the major airfare pricing engines. ATPCO - Veerendra Akula, stores more than 211 million active fares in ATPCO Platform Architect its database and has a global distribution system that includes and Amadeus, airline central reservation systems, travel agencies, airline sites, POS, and online organizations like , , and Google Trips.

Sysdig | REPORT 2 ATPCO: Using ATPCO’s IT modernization story.

Sysdig to ATPCO not only collects, but also manages, monolithic applications to cloud-native Monitor and contextualizes, and distributes fare and microservices, leveraging containers and fare-related data for the airline and travel Kubernetes. As ATPCO moved to the Red Secure Travel industries. They are considered the "data Hat OpenShift Container Platform, the time engine" that enables airlines globally to was right to rethink how to simplify, con- Data Services effectively set prices for airfares. solidate, and transition to tools built for on Red Hat modern environments. They needed solu- ATPCO’s top priority is leading these air- tions that provided the necessary insight OpenShift. lines, systems, and channels into the next to protect their environment during all generation of retailing. Using their unique stages of the container lifecycle. and trusted position as the guardian of the data that powers flight shopping globally, Understanding that monitoring, securing, they help the industry unlock more value and troubleshooting cloud environments by providing solutions that help airlines is fundamentally a data problem, ATPCO modernize offer management and prod- selected Sysdig to deliver the informa- uct display in all channels. Therefore, it is tion needed to ensure they deliver reliable, imperative that ATPCO is able to distribute secure, performant applications during its data quickly and effectively. To ensure both the application development and this, the company is focused on continu- operation phase. Implementing the Sysdig ally modernizing its approach to applica- Cloud-Native Visibility and Security Plat- tion development. form, ATPCO gained end-to-end visibility into their clouds, containers, and applica- As part of their modernization efforts, tions as well as the ability to isolate and ATPCO began transforming its software remediate security problems faster. development processes by shifting from

Sysdig | REPORT 3 ATPCO: Using Securing and monitoring Sysdig to essential systems.

Monitor and With the Sysdig implementation, ATPCO rity team is aware of all container, host, Secure Travel has realized multiple benefits. For one, and orchestrator activity from develop- Sysdig Monitor, one of the technologies ment to production to reduce risk. Before Data Services that make up the Sysdig platform, col- deployment, Sysdig Secure scans ATPCO’s lects and enriches environment data to container images and quickly identifies on Red Hat give ATPCO a better understanding of the vulnerable packages, libraries, and con- OpenShift. behavior and usage of each application on figurations, and alerts the team to any their OpenShift clusters. This increased potential issues. The result is a more visibility into their environment provides secure environment and a consistent pro- the company with the necessary insight cess across development teams. ATPCO for capacity and growth planning. Application Architect Praveen Nerellapalli states, "I can now release software without ATPCO also uses Sysdig Secure — another worrying about if the container is secure Sysdig platform technology — for vulnera- and instead, I can just focus on coding and bility management and runtime security delivering value to the customers." monitoring, and ensuring ATPCO’s secu-

Sysdig | REPORT 4 ATPCO: Using In production, Sysdig Secure protects ATPCO’s containers with policy rules that Sysdig to look for anomalous behavior across their Monitor and OpenShift clusters. When triggered, these " Now that we have rules are able to stop or isolate the affected established Sysdig Secure Travel containers to eliminate the immediate risk. Sysdig Secure’s accelerated forensics are in our environment, Data Services also key in the event of a security incident. All we are well on our pre- and post-incident events are recorded on Red Hat and saved for quicker post-mortem data way to establishing OpenShift. analysis and better-informed decision our forward-looking making. ATPCO’s security response teams platform to deploy our can efficiently detect, analyze, and respond to security threats on containers and the newest generation applications inside them. of application Finally, the Sysdig Teams feature available and services, as with the Sysdig platform enables ATPCO to well as our future group internal users within job functions and product groups to isolate and grant applications that we access to the resource scope needed for have in the pipeline." each team. This enables ATPCO to monitor usage by different teams while allowing - Navid Abbassi, each team to drill in on the information ATPCO Chief Architect that is most pertinent to their functions. The ability to assign team privileges to hosts, namespaces, clusters, or deploy- ments, ensures information is available only to those who need it, making it eas- ier to respond to incidents and adding another layer of security and compliance.

Sysdig | REPORT 5 ATPCO: Using Providing airline customers and Sysdig to travel sites with up-to-date fare data Monitor and on more than 211 million fares.

Secure Travel Since implementing Sysdig across all The Sysdig platform has allowed ATPCO to Data Services environments to increase visibility and deploy its newest generation of products security, ATPCO can now more effectively and services quickly and provided added on Red Hat manage its container and OpenShift confidence in rolling out future products clusters. The Sysdig platform removes in the pipeline. Since implementing the OpenShift. the silos between security, DevOps, and Sysdig Cloud-Native Visibility and Security service owners transforming the ATPCO Platform, ATPCO has continued to process team from reactive to more proactive millions of changes to fares within an hour and collaborative. or less, providing airline partners and cus- tomers with the service they expect.

Sysdig is the industry's first cloud-native visibility + security platform.

Sysdig closes the cloud-native visibility gap, giving enterprises insight and control as they move to dynamic modern architectures. With the Sysdig Cloud- Native Visibility and Security Platform, DevOps, security professionals, and service owners are able to dig deeper into their containerized environments, enabling them to see the benefits of cloud-native faster, with less risk.

www.sysdig.com

Sysdig | REPORT 6