REA Group Case Study

• Infrastructure as a Service (IaaS) - Cloud Computing
• Analytics & Modeling - Machine Learning

• Business Operation

• Cloud Planning, Design & Implementation Services
• Cybersecurity Services

REA Group, a multinational digital advertising company specializing in real estate, was facing challenges in discovering and monitoring cloud usage in an open cloud environment and blocking high-risk sites and services. They needed to securely roll out sanctioned collaboration tools like Box to a global workforce. The company also aimed to deliver on security roadmaps while meeting the four pillars of REA Group’s technology strategy. As a cloud-first organization with 90% of its systems being SaaS based, the IT team at REA Group developed two parallel roadmaps for their technology and security teams that suited REA Group’s open technology culture and met the four pillars of its technology strategy: discovery, reporting, risk assessment and policy control.

REA Group is a multinational digital advertising company that specializes in real estate. The company operates Australia’s leading residential and commercial property websites, as well as sites in Europe, Asia and North America. As a rapidly expanding global business with increasing cross-country collaboration, REA Group saw the need to review its software security practices. The company is headquartered in Melbourne, Victoria, Australia and operates in the media industry. The company's annual revenue for the fiscal year 2016 was AU$630 Million.

REA Group chose Skyhigh for its straightforward setup and immediate value in increased visibility into all cloud services in use and their risk. The solution allowed the company to enforce compliance and governance policies, securely enable cloud services that drive productivity, and enhance their existing cloud adoption strategy across the organization. REA Group used Skyhigh’s CloudTrust™ Ratings to assess each cloud service’s risk and block high-risk sites and services that host malware and pirated content. The company also deployed Box to users with an additional layer of protection for their data that includes contextual access controls, data sharing policy enforcement, seamless integration with other cloud services, like Okta, for identity management and the ability to easily extend existing data loss prevention policies (DLP) to Box.

• Securely deployed Box as the global collaboration tool, extending existing DLP and sharing policies as well as applying contextual access controls based on user behavior, securing confidential data.
• Increased visibility allows for the enforcement of compliance and governance policies as well as the overall reduction in corporate risk by using just-in-time coaching methods to steer users away from high-risk services, to lower-risk sanctioned cloud services, further enabling open cloud environments.
• Drastically reduced the time required to evaluate cloud services by leveraging Skyhigh’s CloudTrust ratings, accelerating overall cloud adoption.

• 90% of its systems being SaaS based.
• 100% cloud adoption by 2017.