A Nationwide Implementation of Network Access Control (NAC) for a Malaysia Government Agency
The implementation requires us to monitor up to 30,000 users and have all their users' devices installed with the endpoint agents. We are require to perform compliance checks such as application compliance, antivirus compliance and windows updates compliance.
This implementation also requires us to perform remote script executions to gather data on the endpoints as well as to execute scripts on hosts that does not comply on certain security policies. We were also required to configure to notify the branches' administrators on the problematic hosts.
A proper control change will be suitable for large scale project such as this.