Case Study: Solvinity achieves ISAE 3000 compliance with One Identity Safeguard for Privileged Sessions

ISAE 3000 Compliance with Safeguard for Privileged Sessions

Solvinity, an Amsterdam-area managed hosting and cloud services provider, faced ISAE 3000 audit requirements that demanded strict separation of roles and full transparency of privileged access. Existing logging could not capture all Windows and application events and audit servers were managed by the engineers who needed oversight. To address this, Solvinity selected One Identity’s Safeguard for Privileged Sessions to monitor SSH and RDP administrative sessions and meet the standard’s controls.

One Identity deployed two Safeguard for Privileged Sessions appliances (one per data center), positioned between the firewall/VPN and internal infrastructure to monitor 15 engineers, enforce strong SSH public-key authentication, and verify admin keys. The solution went into production in 2011 with less than a week of setup after appliance arrival, delivered ISAE 3000 compliance, produced shareable audit records for incident response, and “impressed both customers and auditors” by improving accountability with minimal disruption.

Solvinity

Giray Devlet

Security Officer