Secure Identity Federation and Compliance for a major European media organization

Problem Statement/ Definition

The client operated legacy on-prem systems lacking scalability, modern access control, and compliance with security frameworks like NIST 800-53. These limitations exposed them to data breaches, downtime, and audit risks, especially during peak news operations or remote production events.

Proposed Solution & Architecture

Trustsoft deployed the Dalet Pyramid platform on AWS, using Amazon EKS for orchestration, Aurora PostgreSQL for high-availability data storage, and S3/FSx for media storage. Connectivity was secured via AWS Direct Connect with VPN backup.

Identity and access management was centralized through AWS IAM Identity Center integrated with Microsoft Entra ID, enabling SSO and least-privilege RBAC/ABAC access.

Security services — AWS Security Hub, GuardDuty, Config, and AWS Shield (via Global Accelerator) — provided continuous threat detection, compliance monitoring, and DDoS protection. Logs and alerts were aggregated into Microsoft Sentinel for unified visibility.

‍Outcomes of Project & Success Metrics

The new platform improved operational reliability, collaboration, and security posture. While the document doesn’t include quantitative KPIs, it confirms that the deployment achieved NIST 800-53 Rev.5 compliance, centralized identity governance, and real-time monitoring. The architecture is live in production and supports secure, uninterrupted newsroom operations.

Lessons Learned

The client’s project reinforced the importance of federated identity integration early in hybrid cloud adoption. Coordinating IAM, compliance, and SIEM systems across AWS and on-prem environments required close alignment between IT and security teams. Incremental rollout and clear audit ownership were key to achieving compliance without disrupting newsroom workflows.