Implementation Of Ransomware Defender  

Terra Firma helped to secure Australia’s IT infrastructure by providing project management and advancing a telecommunication company’s security applications and business resilience.
Situation

As technology plays a critical role as an infrastructure within Australia, there is a continuous requirement to maintain and improve the security controls of technology. 

 

Due to recent security and ransomware breach events that involved major Australian corporations, it was determined that IT organisations were likely to be a target for hackers and malicious attackers. Terra Firma was commissioned by one such IT organisation to implement a ransomware defender on their vulnerable file shares servers. 

 

The project was established to:  

  • Improve information security by reducing the likelihood for threat actors to exfiltrate data and prevent ransomware attacks. 
  • Improve security reporting functionalities at the IT organisation and the ability to respond to threats in real time. 
  • Comply with the IT organisation’s security governance and compliance.  
  • Increase the IT organisation’s security posture, governance, and compliance. 
  • Optimise and increase security controls and file recovery management in the IT organisation’s environment. 
Challenge

The security breaches at major organisations in Australia increased the urgency for the IT organisation to fast-track the deployment of this project. During the initial design phases of the project, it was discovered that the IT organisation did not have sufficient bandwidth across Australia to deploy all applications.  

 

It was decided that the project would be split into two phases: 

 

Phase 1: 

  • Deploy an enterprise Ransomware Cluster Application from a global security software vendor, including the vendor’s Ransomware Defender and Auditor, into production. 
  • Deploy the vendor’s Disaster Recovery (DR) solution into production. 

 

Phase 2: 

  • Deploy the vendor’s Search and Recover (S&R) program into production for storage data indexation and security. 
  • Deploy Ransomware Cluster Applications, the DR solution, and S&R program into non-production testing environments. 
  • Establish file backups and recoveries which enabled the IT organisation to restore impacted share drives and files from a previous state. 
  • Deploy the Defender Applications onto the environment for testing purposes, quality assurance and compliance with the IT organisation’s security policies. 
  • Increase the IT organisation’s security posture, governance, and compliance. 
Solution

Terra Firma was engaged to provide program and project management services to deliver both phases of the project end-to-end. The Terra Firma team worked with the IT organisation’s Storage and Design division to complete the project and ensured that each milestone in the delivery plan was met.  

 

The following milestones were tracked for completion across Phases 1 and 2: 

  • End-to-end solution design. 
  • Architecture and security requirements met the IT organisation’s standards. 
  • Analysis and development of Virtual Machines (VMs) for application setup. 
  • Conduct service continuity and functional test to validate the solutions. 
  • Transition the solution to the IT organisation’s Storage, Security and Operation divisions for management.
Our Approach

Both phases of the project were run under the IT organisation’s project management handbook standards, which included an iterative agile approach combined with regular governance. Key meetings and activities included:  

 

  • Management of projects using a hybrid waterfall/agile approach. 
  • Set up and management of appropriate project governance structures. 
  • Management of project scope, budget, project plan, resources, risks and issues, and communications plan. 
  • Fortnightly Steering Committee meetings which included updates on status, budget, and key risks and issues. 
  • Negotiation and procurement of delivery resources with partner delivery teams and vendors. 
  • Oversight of vendor delivery on key objectives. 
  • Engagement with business and vendor stakeholders to understand requirements and construct a solution design. 
  • Work with external teams across the IT organisation to onboard security whitelisting and hardening agents (such as user-based access controls, Microsoft Defender and McAfee) on the Ransomware Defender applications that restrict access to only authorised users. 
  • Coordination between security vendors and the business to enable non-project discussions on department-specific sensitivities. 
  • Estimation, management, and allocation of resources across cross-functional technical and business departments. 
  • Advocacy and demonstration of project best practices that were to be implemented within the IT organisation. 
  • Management of the team and product backlog including sprint and program increment planning, daily stand-ups, retrospectives and showcases. 
  • Work with the external security vendor to complete application installations and set-up. 
  • Assist in the Minimum Viable Product deployment and BAU post-deployment process for the IT organisation. 
  • Management of project closure and BAU handover. 
Outcomes

Terra Firma’s successful delivery of all phases of the project ensured that the IT organisation had: 

  • The ability to actively monitor security vulnerabilities and threats in real time. 
  • The ability to actively respond to future security vulnerabilities and threats in real time by locking out unauthorised actors. 

 

This resulted in the following advancements within the IT organisation’s security: 

  • Improvement of the IT organisation’s security reporting functionality, compliance, and responses to threats. 
  • Establishment of file backups and recoveries which allowed the IT organisation to restore impacted share drives and files back to a previous state. 
  • Positioned the IT organisation for future ransomware defender upgrades and rollouts when new versions of the application are released. 
  • Increased security and business resilience within the IT organisation’s security network. 

More case studies

Future Ready Government: Building Digital Foundations for Tomorrow’s Communities

Future Ready Government: Building Digital Foundations for Tomorrow’s Communities

With climate resilience and digital transformation in mind, one council envisioned a smarter, more connected future for its community.
Faced with increasing demands for transparency, service excellence and climate resilience, a metropolitan council in Victoria embarked on a bold journey to modernise its digital landscape. With a newly appointed CEO championing customer-centricity and a community eager for smarter, greener services, the council partnered with Terra Firma to craft a future-ready ICT Strategy. The result? A transformative roadmap that empowers the council to deliver responsive, data-driven and sustainable services for years to come.

read more
Transforming Accessibility: A Digital Evolution in the Non-Profit Sector

Transforming Accessibility: A Digital Evolution in the Non-Profit Sector

What if every call for help could be answered faster, smarter, and more compassionately – no matter where it came from?
In 2016, a national not-for-profit organisation unified its national operations, bringing together previously separate territories under one domain. But behind the scenes, its contact centres remained fragmented – each using bespoke, disconnected systems that made it difficult to share information, respond quickly, or provide consistent support.
By 2021, the need for change was clear. The organisation set out to transform how it connected with people in need, whether they were seeking financial assistance, crisis support, housing or simply someone to talk to.

read more
Innovation in Action: A Council’s Digital Leap

Innovation in Action: A Council’s Digital Leap

In a world of accelerating change, one council chose to lead with purpose – through innovation, sustainability, and capability.
Faced with the dual pressures of climate resilience and digital disruption, a local government recognised the need to evolve. The goal was clear: cultivate innovation, sustainability, and capability across council. Terra Firma partnered with the council to co-create a transformative digital strategy, one that would empower staff, engage the community and build a dynamic ecosystem for future solutions.

read more
Securing the Frontline: Strategic Enablement for Public Confidence in Health Services

Securing the Frontline: Strategic Enablement for Public Confidence in Health Services

What happens when a public health crisis demands a 1,500-person response team in days – not weeks?
In times of crisis, trust in public systems becomes paramount. During the height of the COVID-19 pandemic, a Government Department faced an urgent challenge: rapidly mobilise a contact and trace centre to protect public health. Terra Firma was engaged to help deliver a secure, scalable solution that would not only support the workforce behind the scenes but also reinforce public trust in the government’s ability to respond swiftly, transparently and effectively.

read more
Secret Link