https://store-images.s-microsoft.com/image/apps.28871.8dc12ad0-23ea-4889-bb25-6f61c94f8c96.dad9a64b-1acd-46f4-8e6a-d7909446c8f9.dffebb1d-6ae9-40e9-a207-c321c50d00ea

Vandis Azure Infrastructure Quickstart

Vandis

Categories
NetworkingCompute
Legal
License AgreementPrivacy Policy

Vandis Azure Infrastructure Quickstart

Vandis

Vandis will build your Azure landing zone with added security through North-South and East-West traffic inspection with a third party NG Firewall.  Our architecture will enable you to easily scale within your current region or expand to additional regions.

Executive Summary

Vandis has built this offering to overcome the challenges organizations face when connecting, securing, and scaling their Azure environment. Our process gives you the ability to quickly deploy an Azure environment that meets best practices. Vandis will build your Azure landing zone with added security through North-South and East-West traffic inspection.  Our architecture will enable you to easily scale within your current region or expand to additional regions. .

Vandis significantly reduces deployment time while leveraging Microsoft's best practices to build a secure, reliable infrastructure that supports your enterprise goals.

Offering Description

Vandis engineers will design and implement an Azure landing zone architecture leveraging a Partner’s Firewall Stack specifically designed to accommodate North-South and East-West traffic inspection with using the partner's third party NG Firewall.  Vandis’ Managed Services can provide remote support and 24/7 Monitoring of third party devices deployed at all locations with custom alert notifications. Included in this service is ad hoc Break/Fix Support and Change Request Support provided by Vandis Certified Engineers including escalation, as needed, to Microsoft Support Services.

Scope of Work

  • Can set up initial subscription for new Azure customers
  • Set up Landing Zone with Management Virtual Net
  • Checklist to set up Templated set up
  • Set Up Palo Alto Prisma VM. Fortinet Fortigate VMs, or Check Point Cloudguard in HA set up with connection to central management platform where applicable
  • Create Security Policies for Firewalls and Azure Landing Zone
  • Create Alerting and Monitoring Profiles
  • Onboard Customer into Vandis Managed Services Desk.

Deliverables

  • Initial subscription for new Azure customers
  • Landing Zone with Management Virtual Net
  • Load balanced pair of next-generation firewalls for traffic inspection
  • Proper RBAC and cloud security posture
  • Up to 3 additional use-case Virtual Networks
  • Terraform deployment of resources
  • Alignment with centralized firewall management where applicable
  • Onboarding into Vandis Managed Services with operational runbook avaiable