Work description
Project Heimdall was a massive project where I went through a full security audit for the Atlassian Data Center products Confluence, Jira Software and Jira Service Management. During the audit I mapped out a number of activities such as securing the API's, revise the situation with how groups were being used as that was out of control, document integrations and ensuring that access was configured properly.
The first activity was to kick out everyone from system administration that was not a member of my team. After that I revised all access setting to ensure that the global permissions were set up properly and that the roles were properly defined and used within the permission schemas. I removed several roles and removed almost a hundred permission schemas to align access right to one common setup so that roles became the appropriate way to assign users to a project.
I removed groups from permissions and workflows and removed hundreds of groups that were unused or used the wrong way.
I removed a very poorly designed setup for legal compliancy and redesigned it using Assets and AD groups to ensure legal compliance was enforced without any possibility to override in the Atlassian platform. I also worked with legal and security to ensure that the setup was aligned throughout the organization in sales situation and contract signing processes.
I added Compass and forced all integrations to be listed there by securing the API's and turning off access to anyone that did not have a documented integration. The API's were only accessible through a special SAINT (System Account for INTegration) account that we controlled.
We also reviewed and corrected thousands of configurations in the products and the apps and made sure they were not in risk of a legal or security incident.
Tags
Uppdragbeskrivning
Saknar Beskrivning
Ingen uppdragsbeskriving har lagts till än.
Taggar
Assignment: Take ownership of the Atlassian platform on data Center and define and implement strategies to make it secure, compliant and used responsibly. Consolidate 1300+ Atlassian products and apps across 500+ domains and organize the move from data center to Cloud with a green field approach. Act as expert towards the 400+ teams and help them move from old and obsolete setup towards a structured and modern way of working. Improve support for the 120.000 customers in the platform and ensure integrations are secure and handled maturely. Set up communication and governance with stakeholders globally. Support 3000 users globally and build a team of Atlassian experts from scratch.
Work directly with Atlassian and their partners on a weekly basis as a prioritized organization.
Ensured the data center platform was secure and compliant and implemented ways of working through a set of work group councils. Implemented a communication plan that included building up documentation in SharePoint and Confluence to ensure people had information of the many changes we implemented. Configured the Cloud platform from scratch and planned the initiative to move 3000 users to the cloud, which included 1400 workshops over a three-year span in three phases.
Method / Tools: Jira software DC, Confluence DC, Jira Service Management DC, Jira software cloud, Confluence cloud, Jira Service Management Cloud, Zephyr Scale, Assets, Plans, Atlassian Guard, Compass, Jira Product Discovery, Atlas, Slack, teams, GitLab, Scriptrunner, Refined
Customer Benefits: A secured and compliant data center platform where the users and customers could work structured according to standard configurations that promoted collaboration. A fully configured cloud platform with the latest security features implemented and a set of standards allowing rapid move to the cloud. Provided a project plan for cloud move and consolidated multiple organizations into the new Enterprise organization to save several millions in licensing costs. Removed consultants and hired a junior Atlassian Support Agent, leading a reduced cost for Sinch of several million SEK.
Notes are only accessible by logged in members.
No Video
No Video has been added yet.
No Gallery has been added yet