Enhancing Cyber security measures for a Hotel Management System

Download 55.88 Kb.
Size55.88 Kb.
  1   2   3
Final Project Proposal E158421
Final Project Proposal Approval Form 2024

Enhancing Cyber security measures for a Hotel Management System

(SANS Holdings PVT LTD)

Student Name : Dilshan Fu Shan Kao

Registration No : E158421
Supervisor : Mrs.Jethendri Perera
Second Supervisor : [leave blank]
Date Submitted : 30/4/2024
Date Approved : [leave blank

The problem area lies in the vulnerability of SANS Holdings' cloud-based ERP hotel management system to cyber threats, posing risks to sensitive guest data, operational continuity, and regulatory compliance. With the increasing sophistication of cyber-attacks, the importance of robust cybersecurity measures cannot be overstated. Data breaches, malware infections, and unauthorized access are significant concerns that can tarnish the company's reputation, incur financial losses, and lead to legal liabilities. To address these challenges, leveraging advanced cybersecurity technology is essential.
Palo Alto Networks offers a suite of cutting-edge cybersecurity solutions designed to protect organizations from a wide range of cyber threats. Their next-generation firewalls (NGFW), cloud security, and Zero Trust security models provide advanced threat prevention, granular access controls, and centralized management capabilities. By deploying Palo Alto Networks' solutions, SANS Holdings can fortify its ERP system against cyber-attacks, ensuring the confidentiality, integrity, and availability of its data. The proposed solution involves implementing NGFWs at network perimeters and between segments, enforcing Zero Trust principles for access control, and integrating cloud security measures to protect data stored in the cloud. This comprehensive approach will significantly enhance the security posture of SANS Holdings' ERP system, safeguarding its operations and preserving customer trust.

Background and Motivation
SANS Holdings PVT LTD is a rapidly growing hotel chain based in Sri Lanka, established in 2016. The company currently operates three hotels and one hostel. The company employs over 50 staff across its various properties, indicating a sizable workforce dedicated to managing the hotels and providing services to guests.

  1. Cao Ella: This is one of the hotels owned and operated by SANS Holdings. It's likely located in the picturesque town of Ella, a popular tourist destination known for its scenic views and hiking trails.

  2. Café Bistro Hotel and Restaurant: This establishment combines a hotel with a bistro-style restaurant, offering guests a unique dining experience alongside their accommodation.

  3. Hotel Levon: Another hotel in SANS Holdings' portfolio, Hotel Levon likely caters to both leisure and business travelers, providing comfortable accommodations and amenities.

  4. Mad Monkey Hostel: This hostel, known as Mad Monkey, is likely geared towards budget-conscious travelers, offering affordable accommodation options such as dormitory beds and communal facilities.


STOREMATE is a Sri Lankan cloud-based product that provides the ERP and POS solutions used by SANS Holdings. Being a cloud-based product means that the software and data are hosted on remote servers accessed via the internet, rather than on-premises servers. This offers several advantages, including scalability, accessibility from anywhere with an internet connection, and reduced maintenance costs. The fact that SANS Holdings relies on STOREMATE for its management system is significant for several reasons

  • Efficiency and Integration: The ERP and POS systems streamline operations, enabling efficient management of hotel functions such as reservations, guest services, and inventory management.

  • Centralized Management: With a cloud-based system, management and staff across all properties can access the same data and perform tasks from any location.

  • Scalability: As SANS Holdings continues to grow, the cloud-based solution can easily scale to accommodate additional properties and users.

  • Local Support: Being a Sri Lankan product, STOREMATE likely provides local support and customization tailored to the needs of hospitality businesses in Sri Lanka.

Transitioning from physical data stores to cloud-based platforms is a significant step for a developing country, offering greater flexibility, scalability, and accessibility. However, this shift brings forth a critical challenge: security. With the rapid growth of cyber threats, securing these cloud-based platforms becomes paramount. Every day, new cyber-attack methods emerge, making it crucial to stay ahead in terms of security measures. In this context, securing platforms like "STOREMATE," a cloud-based ERP system, is of utmost importance. As technology advances, the threats evolve, making it essential for professionals in charge of security to stay vigilant and adopt the latest technologies and strategies to safeguard sensitive data and systems.
As part of the effort to secure "STOREMATE" the focus lies on implementing robust security measures that can withstand emerging cyber threats. This involves utilizing cutting-edge technologies and adopting proactive security practices. By monitoring for vulnerabilities, implementing encryption protocols, and employing advanced intrusion detection systems, the goal is to create a fortified defense system against potential cyber-attacks.
Problem in Brief
The specific problem that I hope to solve is the enhancement of cybersecurity measures for SANS Holdings' cloud-based POS hotel management system, particularly the integration of security measures to protect sensitive guest information, financial data, and operational systems.
Why is it worth solving?
Protection of Sensitive Data: In the hospitality industry, guest information such as personal details, payment information, and reservation records are highly sensitive. Any breach of this data can lead to significant reputational damage, loss of customer trust, and potential legal ramifications under data protection regulations like GDPR.
Operational Continuity: The smooth operation of SANS Holdings' hotels and hostels heavily relies on their ERP system. Any disruption or compromise to this system due to cyber threats can lead to downtime, loss of revenue, and disruptions in guest services, affecting the company's bottom line and reputation.
Legal and Regulatory Compliance: With the increasing focus on data privacy and protection regulations worldwide, including Sri Lanka, ensuring compliance with these regulations is critical. Failure to protect guest data adequately can result in hefty fines and penalties.
Brand Reputation: SANS Holdings has been growing rapidly since its inception, and maintaining a positive brand reputation is crucial for its continued success. A cybersecurity incident, such as a data breach, can tarnish the company's image and erode customer trust, potentially leading to loss of business and market share.
Vendor Trust and Reliability: As SANS Holdings relies on STOREMATE for its cloud-based ERP system, ensuring the security of this system also fosters trust and confidence in the vendor's reliability. A secure and robust system from STOREMATE not only protects SANS Holdings but also demonstrates the vendor's commitment to its customers' security.
The aim of this project is to develop a robust cybersecurity system using Palo Alto Networks' solutions to address the security challenges faced by SANS Holdings' cloud-based ERP hotel management system.
Critical Review of the Problem Domain:
Identify and analyze the specific cybersecurity challenges faced by SANS Holdings' cloud-based ERP hotel management system.Review recent cybersecurity incidents in the hospitality industry and their implications for SANS Holdings.Assess the current security posture of the ERP system and identify potential vulnerabilities, compliance gaps, and areas for improvement.
Critical Study of Technologies for Solving the Problem:
Conduct a detailed study of Palo Alto Networks' cybersecurity solutions, including next-generation firewalls (NGFW), cloud security, and Zero Trust security models.Evaluate how Palo Alto Networks' technologies can address the identified security challenges effectively.Compare Palo Alto Networks' solutions with alternative cybersecurity technologies to determine the best fit for SANS Holdings' requirements.
Design and Development of a System for Solving the Problem:
Design a comprehensive cybersecurity architecture using Palo Alto Networks' solutions tailored to SANS Holdings' cloud-based ERP hotel management system.Develop detailed implementation plans for deploying Palo Alto Networks' technologies, including configuration, integration, and testing.Customize security policies and rulesets to align with SANS Holdings' specific security requirements and regulatory compliance standards.
Evaluation of the Proposed System:
Deploy the designed cybersecurity system in a test environment to evaluate its effectiveness in addressing the identified security challenges. Perform penetration testing and vulnerability assessments to assess the resilience of the system against potential cyber threats.
Document the entire project lifecycle, including problem analysis, technology review, system design, implementation details, and evaluation results. Produce comprehensive user manuals and operational guides for SANS Holdings' IT staff to effectively manage and maintain the cybersecurity system.
Proposed Solution
The architecture for securing SANS Holdings' cloud-based ERP hotel management system using Palo Alto Networks' solutions will follow a layered approach, incorporating various security components

  • Network Segmentation: Divide the network into separate segments to isolate critical systems and sensitive data from less secure areas.

  • Next-Generation Firewalls (NGFW): Deploy Palo Alto Networks' NGFWs at the network perimeter and between network segments to inspect and filter traffic, blocking malicious content and unauthorized access attempts.

  • Cloud Security: Implement Palo Alto Networks' cloud security solutions, such as Cloud Access Security Broker (CASB) and Secure Web Gateway (SWG), to protect cloud-based applications and data from threats.

  • Zero Trust Model: Enforce a Zero Trust security model using Palo Alto Networks' solutions to authenticate and authorize all users and devices accessing the network, regardless of their location or trust level.

SWOT Analysis


  1. Palo Alto Networks' advanced threat prevention capabilities can effectively detect and mitigate cyber threats, enhancing the security posture of SANS Holdings' ERP system.

  2. The Zero Trust security model provides granular access controls and continuous authentication, reducing the risk of unauthorized access.

  3. Palo Alto Networks' centralized management platform offers enhanced visibility and control over the entire cybersecurity infrastructure.


  1. Implementation and configuration of Palo Alto Networks' solutions may require specialized expertise and resources.

  2. There may be compatibility issues with existing IT infrastructure and applications, requiring careful integration and testing.


  1. Continuous updates and advancements in Palo Alto Networks' solutions offer opportunities to enhance the cybersecurity system further.

  2. Collaboration with Palo Alto Networks' partners and ecosystem can provide access to additional resources and expertise.


  1. Rapidly evolving cyber threats and attack techniques pose a constant challenge to the effectiveness of the cybersecurity system.

  2. Budget constraints and resource limitations may impact the implementation and maintenance of the Palo Alto Networks' solutions.

Budget constraints and financial resources may affect the affordability of implementing Palo Alto Networks' solutions and ongoing maintenance costs.
Growing awareness of cybersecurity risks among consumers and stakeholders emphasizes the importance of securing sensitive data and protecting privacy.
Rapid advancements in cybersecurity technologies, including Palo Alto Networks' solutions, offer opportunities to enhance the effectiveness of the cybersecurity system.
Environmental factors may have minimal direct impact on cybersecurity, but sustainability and energy efficiency considerations in IT infrastructure deployment should be considered.
Project plan

Download 55.88 Kb.

Share with your friends:
  1   2   3

The database is protected by copyright ©ininet.org 2024
send message

    Main page