How Blackbaud Can Strengthen Data Security and Compliance with Fortanix Key Insight for Automated Key Management and Risk Assessment
Customer Profile
Blackbaud, the leading provider of software for powering social impact, serves the nonprofit and education sectors, companies committed to social responsibility, and individual change makers. The customer is present across multiple public and private cloud environments, primarily AWS, Azure, and on-premises datacenters.
Products
Fortanix Key Insight
Requirements
- Key Sprawl Across Hybrid Environments: With thousands of encryption keys spread across multiple clouds and on-prem environments, Blackbaud wants to maintain consistent key lifecycle policies, such as rotation, usage, and deletion, and minimize the risks.
- Time-Consuming Manual Inventory and Reporting: Maintaining an encryption key inventory for their applications currently demands around 972 hours annually. This manual process not only drains manual resources but also increases the chance of error.
- Regulatory Compliance: Blackbaud must comply with SOC, PCI-DSS, and internal mandates. These require continuous key assessment and reporting, an area where manual processes fall short.
Fortanix Solutions
To address complex encryption and key management challenges, Fortanix proposes Key Insight, a comprehensive key management and inventory tool that provides visibility and simplifies security controls across multicloud and on-premises environments.
Automated Key Discovery
Fortanix Key Insight’s goal is to simplify Blackbaud’s ability to catalog encryption keys and data services across Azure, AWS, and on-premises environments. The solution offers a centralized view and automatically discovers where keys are located, their type, and usage status.
Cryptographic Security Assessment
Fortanix Key Insight's assess function can help Blackbaud evaluate the security and compliance of encryption keys. The tool will run regular checks to ensure the cryptographic footprint meets security policies, regulations, and NIST standards. It will flag weak or outdated keys and highlight areas at risk from quantum computing threats.
Integration with Existing Environments
Blackbaud won’t have to install any extra agents on their servers. Fortanix Key Insight can connect securely to their cloud and databases using a simple, agentless setup. For on-premises data, Blackbaud can use a local “scanner”, installed once on a standalone Linux server within their datacenter, that can communicate securely over standard outbound ports (443) to the Fortanix cloud.
Quantum-Readiness and Advanced Key Policy Controls
Fortanix Key Insight can help Blackbaud future-proof its encryption. It identifies keys that are vulnerable to quantum threats, allowing Blackbaud to prepare for new risks. Blackbaud can also use Fortanix Data Security Manager to enforce key rotation and deprecation policies, reducing vulnerabilities.
Benefits
Fortanix Key Insight can reduce the time required for key inventory and reporting from 81 hours per month to minutes. The Blackbaud team can focus on higher-value tasks instead of spending time on manual reporting.
Fortanix can help Blackbaud enforce strict encryption policies and standards. The automated solution will let them monitor key policy compliance, detect unencrypted services, and track key rotation continuously.
When manual tasks are automated, Blackbaud can save nearly 1,000 hours yearly. They can also reduce costs and risks by identifying unused keys and removing overly permissive policies.
