SJ chooses Basefarm

Strengthens security efforts through centralised log monitoring service, based on machine learning, allowing analysis and reporting of thousands of IT security events per second.

SJ chooses Basefarm for automated information security support

Strengthens security efforts through centralised log monitoring service, based on machine learning, allowing analysis and reporting of thousands of IT security events per second.

SJ has entered into an agreement with IT Operations supplier Basefarm. The contract covers security services to further strengthen security and build an operative ability to monitor and manage up to 10,000 events per second. The agreement comprise monitoring and management of the central log service as well as an SOC service integrated with SJ’s normal Service Desk function.

The solution SJ has chosen contains machine learning for fast analysis of trends and potential threats. SJ’s investment is a response to the new IT security demands in GDPR and the NIS directives as well as internal ISO 27001-ISO work. The solution will help SJ continue to keep full control of security, as demands for digitalization, speed and integrity increase.

“Our function is growing and we are quickly becoming more dependent on increased digitalization,” said Willy Stjernudde, responsible for IT security at SJ. “To meet our customers’ demands and live up to external requirements like GDPR and the NIS directive, we need to find automated solutions to continue delivering high security and privacy. In the near future we will manage around 10,000 events per seconds, so we need a support system that will allow us to oversee and analyse such large data volumes in real time.”

Security logs are collected from different sources such as networks, digital channels and IoT units on SJ’s trains. Basefarm is supporting SJ by making available relevant technical competence, through a certified SOC service and a Nordic supply when it comes to consultants and data centres.

The SJ solution uses machine learning to identify potential deviations. If an anomaly is identified the security team at SOC is alerted, and as they are available around the clock, they will immediately analyse and implement necessary actions to solve the problem.


“From signing the agreement, it took three weeks for everything to be in place,” said Willy Stjernudde. “That has to be some kind of record, and we are very happy with the way Basefarm, and the other partners, have handled the process. Basefarm lives up to all the requirements we have on a supplier, including local storage and expertise, agility, experience and cost.”

Thanks to the new solution SJ can act in accordance with new legislation in an efficient way, when it comes to discovery and reporting of security incidents, especially relating to personal data.

“We’ve had a dialogue with SJ for some time as we realised our competence, experience and capacity was a good match to their tough demands,” said Fredrik Svantes, Head of Security Operations at Basefarm. “SJ is also a perfect example of a business where digital ability becomes a decisive factor for consumer experience. Now that the first project is in place, we’re currently working with SJ to further develop and increase our collaboration, which will benefit both business and consumers.”


SJ is a Swedish travel partner that offers sustainable train travel, both independently and in collaboration with others. The group has a turnover of approximately BSEK 7,8 and employs 4,500 people. As the market leading train operating company SJ links Sweden together and opens the doors to Scandinavia’s capitals. Every day, 130,000 people choose to travel on one of SJ´s 1,200 departures from 284 stations.

Orange Business Services well-positioned in Gartner’s 2019 report new


“We are very proud to be positioned among key competing players in the market in the Gartner 2019 Magic Quadrant for Data Center Outsourcing and Hybrid Infrastructure Managed Services, for the second year in a row,” says Cédric Parent, Deputy CEO and Chief Marketing Officer at Orange Cloud for Business, Orange Business Services.

“Our positioning shows our strong progression in terms of both Ability to Execute and Completeness of Vision. The acquisition of Basefarm has marked a major milestone in our international development. In particular, the company’s integration is enabling us to accelerate our shift from infrastructure to managed services.”

“Beyond our own public or private cloud infrastructure, we have significantly strengthened our capacity to propose enriched, automated, multi-cloud services to our customers, wherever they are in the world, allowing us to support companies as they transform to new, digital models based on cloud computing, big data and artificial intelligence.”

Cédric Parent

Deputy CEO and Chief Marketing Officer at Orange Cloud for Business, Orange Business Services

Magic Quadrant for Data Center Outsourcing and Hybrid Infrastructure Managed Services, Europe

Orange Business Services positioned among key competing players in the market in Gartner’s 2019 Magic Quadrant for Data Center Outsourcing and Hybrid Infrastructure Managed Services, Europe.

Basefarm tops prestigious client satisfaction survey

Whitelane and PA Consulting Nordic survey shows Basefarm is number 1 in Account Management Quality and number 3 in general client satisfaction 

Oslo, Stockholm, April 25th, 2019: Basefarm clients in the Nordic region are very satisfied, results from the Whitelane Research and PA Consulting annual client satisfaction survey reveal. In the Account Quality Management category, no other IT service provider in the region has more satisfied clients. In addition, Basefarm keeps climbing in the general client satisfaction category and has now earned a top three spot.

“We have great respect for the independent Whitelane and PA Consulting survey as it is both professionally executed and measures the most important factor to us – client satisfaction,” Fredrik Ohlsen, CEO of Basefarm, said. “It is encouraging to see that client responses result in improved ranking year on year. Our experts work in close collaboration with our clients and together we are able to design and implement successful digitalization projects. These survey results prove that this way of working is the right way to go in today’s fast-paced business and IT climate”.

Whitelane and PA Consulting surveyed customer satisfaction among more than 330 enterprises. There were 35 IT service providers examined, including several billion-dollar companies. In the Account Management Quality category clients gave Basefarm the best rating (82 %) of all service providers. In the Business Understanding category, Basefarm also received the best service provider rating (78 %) together with Accenture.

One of the strongest trends that the survey results reveal is that service providers in general need to become better at helping clients in their business transformation initiatives.

”Basefarm thinks that it is a fair expectation, as IT and business departments now need to work together more than ever before,” said Fredrik Ohlsen. ”Here, we are dedicated at keep attracting and developing our expertise around AWS, Azure and GCP and how they work in sync with client applications, processes, data and other cloud models. That way we can keep being a truly independent provider that always suggests the most efficient solution to each individual client”.

Looking at the general client satisfaction rating across all categories, Basefarm ranks as number three (76 %). India based Tata Consultancy and USA based Salesforce are the only companies that ranks higher (both get a 77 % rating). The average score across all service suppliers is 68 %, which is the same as in last year’s survey. 72 % of the responding companies say that they expect to outsource IT services to the same extent or more during the coming two years.

About the survey

Whitelane Research and PA Consulting’s 2019 IT Sourcing Study Nordic is an independent client satisfaction survey among more than 330 of the largest IT buyers in the Nordic region. The survey encompasses responses from organizations in all kinds of industries, for example banking, insurance, technology, retail, manufacturing, public sector, logistics and healthcare. The results show the client satisfaction level in nine service categories of 35 IT service providers that operate in the region.

About Basefarm

Basefarm is a European Managed Service Provider. We create market leaders by integrating the key competencies for digital transformation – big data, cloud computing and information security, into one service offering. Our delivery model covers everything from ”idea to cable”; we provide strategic advice, implementation projects and infrastructure operations under one management and on any cloud. Basefarm was founded in 2000 and our team of 550+ top engineers and advisors are servicing global clients from our European offices and data centers in Norway, Sweden, The Netherlands, Germany and Austria.

Basefarm was top ranked in Whitelanes IT Outsourcing study Nordics 2018 and was recognized by Gartner as a Cool Vendor in the European Cloud Computing Market 2015 for our unique methodology in application management. The unbelievable Machine Company *um,part of the Basefarm group, was named Innovator of The Year 2018 by German business magazine eins Wissen and Data Analytics For more information go to or follow us on LinkedInTwitter and our blogs.

In August 2018 Basefarm was acquired by the Orange Group, a leading global telecommunications operator, to reinforce the cloud expertise of its enterprise division Orange Business Services. For more information, go to or follow us on LinkedInTwitter and our blogs.

Basefarm Greatest Place to Work

We have been working with employee satisfaction in order to improve as an employer for many years now. Since 2013 we do this in a structured way by using the methodology of Great Place to Work (GPW). The method focuses on Trust in Management, Pride in your work and the Relationship to your colleagues.

Simplify auditing with SOC2 Reports

Article published in Finansavisen in Norway 28th of Feb written by BJØRN HENNING GRANDAL

Most industries and companies have increased their focus on security in recent times. The underlying reasons are among other things frequent reports in  media, numerous incidents published, GDPR and the implementation of the NIS Directive.

Basefarm has a range of customers both at home and abroad and provides numerous complex and critical services, often involving large volumes of personal data. These are all services that their customers can outsource. However, the risk involved in providing such services must remain with the customer, and there is an increasing demand for a higher level of auditing and certification services.

“It is increasingly common to outsource IT operations to suppliers of cloud services, and the potential for local inspection and auditing of service providers is now much lower. As a result, third-party certification is of increasing interest and an important element in the follow-up and control of a company’s suppliers,” confirms Basefarm’s SVP Quality & Security, Esten Hoel.

Increased demand

Kevin McCloskey, a partner with Enterprise Risk Services in Deloitte, has also noted the increased focus on security from companies with foreign customers who require confirmation that their suppliers are “secure enough” to provide key information.

“It is not uncommon to have some kind of company certification/audit laid down in new contracts, and the supplier is expected to submit these once a year. GDPR has triggered a higher emphasis on security and distribution of responsibility between the data controller and data processor. This will undoubtedly result in increased demand for GDPR certificates or similar certification.”

Kevin McCloskey confirms that Deloitte is an independent supplier to Basefarm, assigned the task of conducting an independent assessment to confirm whether the internal control structure implemented at Basefarm functions according to its specifications.

Basefarm has numerous customers in the banking and finance segment, but also within tourism and e-commerce. One factor all these customers have in common is that they store large volumes of personal data, often including credit card information and payment details.

“GDPR has triggered a higher emphasis on security and distribution of responsibility between the data controller and data processors”

New reporting system SOC2

Auditing company Deloitte and Basefarm have now collaborated on the delivery of SOC2, a reporting system, which according to Esten Hoel, is not yet widely used. SOC2 is comprehensive and covers many of the same – but more than – the traditional auditing services found in the ISAE 3402 reporting standard, which is very popular.

“An ISAE 3402 report covers internal controls from a financial reporting perspective. Its purpose is to document compliance with legislation and regulations. The target group for the ISAE 3402 reports is the customer’s management group and auditors,” confirms Esten Hoel.

SOC2 encompasses internal controls related to information security in general, availability, confidentiality, data integrity and security for personal data.

“The purpose of internal control for each of these areas is defined in the standard. The target group for SOC2 reports is the customer’s management, information security supervisors and control functions,” explains Esten Hoel.

 Simpler and more efficient

He believes that SOC2 is a standard that encompasses all aspects of information security, while ISAE 3402 is normally restricted to the processing of financial data.

Esten Hoel claims that SOC2 not only covers many of the elements included in ISAE 3402, but is also mainly based on ISO 27001 certification. According to Basefarm’s head of security and quality, this simplifies both auditing and ISO certification and provides a boost to inhouse efficiency.

“ISO 27001 is by now a prerequisite for service providers in the IT industry. We believe that SOC2 will follow suit, and that an increasing number of companies will look for service providers who can offer such reports. A SOC2 report provides much more detailed insight and information on how a service provider works with security than just an ISO certificate,” says Esten Hoel.

About Esten Hoel:
Esten Hoel is our SVP Security and Compliance and is part of the Basefarm management team. He has a long history in the IT industry but has also worked within the mobile communication and for the Winter Olympics in Lillehammer in 1994. He is passionate about transforming security to support the people and organizations and he believes that policies, technology and processes are here to help, not to stop organizations, and to enable innovation. His motto is “systematic work, always works”.

Esten Hoel, SVP Security and Compliance, Basefarm

Would you like to know  more:
How to improve control and save cost with service organization controls (soc) reports. 

Inera chooses Basefarm

Increased focus on innovation by appointing Basefarm as supplier of services for IT Operations

Stockholm, 3 October 2018: Inera, a developer of eHealth services for public sector health organizations and municipalities, has entered into an agreement with IT Operations supplier Basefarm. Through the cooperation Basefarm will manage and optimize operations and enable Inera to focus on innovation and development of smart digital services for the public.

“Digitalization is happening extremely quickly, and at Inera we’re actively working with developing smart services in eHealth,” said Petter Könberg, head of IT, Inera. “Working with Basefarm allows us to continue to be at the forefront, and let Basefarm help us with that they do best – being a proactive operations provider who ensures a stable and secure IT environment, where we can put our technology at work in the smartest way possible, short and long term.”

Working with Basefarm, means Inera will get a provider with proactive and modern working practices, who apart from offering accessible, stable and secure operations, also ensures that Inera always has access to the best and most effective digital solutions. For Inera, the partnership is a natural step forward, as they have a number of criteria to consider when delivering their services, something which requires internal resources not least to ensure demands are met when it comes to accessibility and data privacy.

“Our choice of partner is based on an in-depth analysis of current and future needs, and we look forward to working with Basefarm to meet these,” said Petter Könberg.

During the first two years of the contract, Basefarm and Inera will work intensively to migrate existing services to Basefarm. In parallel, a large number of new services will be implemented, and success will require a very tight collaboration between Inera and Basefar

“We are very much looking forward to working with Inera,” said Sara Murby Forste, Country Manager Sweden, Basefarm. “It’s a substantial project and our experts will work very tightly with Inera’s team. In the end it’s all about giving Inera the ability to focus on their core business, by allowing us to do what we are so very good at – all the operations related areas.

About Inera

Inera develops eHealth services for businesses, health services, regions and municipalities and is owned by public organization SKL. Inera has developed joint solutions for a number of public health services and projects including 1177 Vårdguiden, UMO (teenage services online) and Journal via nätet (Medical notes online). The organization had a turnover of approximately MSEK 850 in 2018 and employs over 300 people. The services developed is aimed at citizens as well as employees working in health organizations, regions and municipalities.

Basefarm is now AWS Public Sector Solution Provider and Authorized Government Reseller

Stockholm, December 13th, 2018:

Basefarm has been recognized as Amazon Web Services (AWS) Public Sector Solution Provider and Authorized Government Reseller. The new partner status means that Basefarm is officially authorized to both sell and manage AWS public cloud migrations and operations for public authorities and municipalities.

“We have helped many governmental institutions on their cloud journey, helping them to migrate applications and data to the cloud,” says Svein Johansen, Product Manager at Basefarm. “The new partner status officially authorizes us to help public sector customers with their AWS cloud transformations”.

As AWS establishes datacentres in Sweden, it attracts public authorities and municipalities that want to move data and applications to the cloud. At the same time, the public sector is heavily regulated and often involve sensitive and personal data. Therefore, it is important with flexibility to establish and run a cloud environment where data continuously can be stored and managed securely and according to current regulations. This will be facilitated as AWS has physical presence in the region. Another advantage of having AWS datacentres locally is that it will be easier to create low latency hybrid solutions, combining services in AWS datacentres and Basefarm’s datacentres in Stockholm and Oslo.

So far this year, AWS has released approximately 1500 new services, and new ones are constantly added. While the new services bring new opportunities, they could also affect IT operations as many services and applications affect each other. Here, Basefarm plays a crucial role for public sector organizations that are not able to, or chose not to, attract, keep and develop the necessary IT competence to manage the situation in-house.

By engaging Basefarm, these organizations will ensure that their critical applications and data will be optimized throughout the lifecycle utilizing our Flexible Cloud Operations Engagement Model leveraging consultative Guided Operations, 24/7 Frontline Operations and custom Platform Operations.

Basefarm is an Advanced Consulting Partner and AWS Public Sector Solution Provider and has developed deep expertise in AWS cloud while working with demanding customers in both commercial and public sector.

What is the next step on your cloud journey? Download our Cloud Report:

What should

you focus on in order to speed up your company’s digital transformation? Downloar our Digital Ability Report: