Description of The IS PDF

Group Astaldi Information System Department
DESCRIPTION OF THE INFORMATION SYSTEM (draft)
Written by Date
Giampiero Astuti 24 March 2017
Company Version
Astaldi SpA Draft
Version: 0.32 (Draft) Page 1 of 51 24 March 2017

Contents
1 INTRODUCTION 5
2 MISSION OF THE ISOD DEPARTMENT 5
3 JOB DESCRIPTION OF THE ISOD 5

3.1 INFORMATION SYSTEM DEPARTMENT 5
3.2 ORGANIZATIONAL DEPARTMENT 6
4 THE VALUE CHAIN 6
5 THE “PENTAGON” MODEL 7
6 POLICY AND SOP 8
7 HUMAN RESOURCES 9
7.1 INTRODUCTION 9
7.2 ORGANIZATION CHART 9
7.3 GROUP CIO 10
7.4 IT PROJECT LEADER 10
7.5 IT BUSINESS ANALYST 11
7.6 SOFTWARE DEVELOPER 11
7.7 SERVICE DESK 11
8 THE INFORMATION SYSTEM 11

8.1 IT SECURITY 11
8.1.1 GENERAL GUIDELINES 12
8.1.1.1 First level: Transport of information 12
8.1.1.2 Second Level: Interoperability 12
8.1.1.3 Third Level: Cooperation among applications 12
8.1.2 POLICY FOR THE MANAGEMENT OF DATA SECURITY 12
8.1.3 MICROSOFT ACTIVE DIRECTORY (AD) 12
8.1.4 PHYSICAL SECURITY OF CORPORATE DATA-CENTER 12
8.1.5 IT GUIDELINES 13
8.2 INFO-CENTER 13
8.2.1 INTRODUCTION 13
8.2.2 POWER SUPPLY 13
8.2.3 AIR CONDITIONING SYSTEM 14
8.2.4 FIRE SYSTEM 14
8.2.5 SECURITY SYSTEM 14
8.2.6 LIGHTNING PROTECTION SYSTEM 14
8.2.7 DISASTER RECOVERY 14
8.3 TELECOMUNICATION 15
8.3.1 GENERAL DESCRIPTION 15
8.3.2 INTERNET 15
8.3.3 WIFI 16
8.4 PHONE AND VIDEO CONFERENCE 16
8.4.1 MOBILE PHONES 16
8.4.2 FIXED PHONES 16
8.4.2.1 Introduction 16
8.4.2.2 New implementations 16

8.4.2.3 Old implementation 17

8.4.2.4 Video Conference 17
8.5 BUSINESS APPLICATIONS AND TOOLS 17
8.5.1 FUNCTIONAL COVERAGE BY BUSINESS APPLICATION 17
8.5.2 SOFTWARE ALLOCATION BY COUNTRY 18
8.5.3 INTERNET SITES 18
8.5.4 INTERNAL DEALING 18
8.5.5 PROJECT PLANNING AND MANAGEMENT SYSTEM 19
8.5.5.2 Procedure Flow 19
8.5.6 GENERAL ACCOUNTING, ACCOUNT PAYABLE, ACCOUNT RECEIVABLE, BANK ACCOUNTING 20
8.5.6.1 General Accounting 20
8.5.6.2 Account Receivable 20
8.5.6.3 Accounts Payable 20
8.5.6.4 Cash and bank management 21
8.5.6.5 Digital archiving 21
8.5.7 CORPORATE PERFORMANCE MANAGEMENT (CPM) 21
8.5.8 TREASURY AND FINANCE 23
8.5.8.1 Piteco Evolution 23
8.5.8.2 Piteco CBC 23
8.5.8.3 Quercia TLQ 23
8.5.8.4 Fincad Analytics Suite 23
8.5.8.5 Bloomberg e Reuters 24
8.5.9 ASSET MANAGEMENT 24
8.5.10 PROCUREMENT & LOGISTIC MANAGEMENT SYSTEM 24
8.5.10.1 Baan Order Management 24
8.5.10.2 Baan Warehousing Management 25
8.5.10.3 General Item Data 25
8.5.10.4 The eProcurement System 25
8.5.11 TENDERS MANAGEMENT SOFTWARE 25
8.5.12 ENTERPRISE CONTENT MANAGEMENT SYSTEM (ECMS) 26
8.5.12.2 Main areas 27
8.5.12.3 Main functions 27
8.5.13 SELF-SERVICE PORTAL (ME) 27
8.5.14 HR MANAGEMENT 27
8.5.14.2 Payrolls and Salaries/Wages (Zucchetti - Deloitte) 27
8.5.14.3 Management of Human Resources (Talentia) 29
8.5.14.4 Management of accesses (Gemms) 29
8.5.14.5 Management of business travel and expense reports 29
8.5.14.6 Presence Detection of staff and Payroll Data Collection Items 30
8.5.15 MAINTENANCE CONTROL SYSTEM 30
8.5.16 ENGINEERING MODULES 30
8.5.17 BUILDING INFORMATION MODELLING (BIM) 30
8.5.18 ENVIRONMENTAL MONITORING SYSTEM AND HEALTH AND SAFETY SYSTEM 30
8.5.19 MICROSOFT OFFICE365 30
8.5.19.1 Exchange 31
8.5.19.2 Sharepoint 32
8.5.19.3 OneDrive for Business 32
8.5.19.4 Skype 32
8.5.20 IT DEDICATED SOFTWARE 32
8.5.20.1 Server Virtualization (VmWare) 32
8.5.20.2 Backup and Restore 33
8.5.20.3 Web Security and Content Filtering 33

8.6 DATA FLOWS ACROSS BUSINESS APPLICATIONS 33
9 IT VENDOR 34
9.1 VENDOR MATRIX 34
10 IT STANDARDS 35
10.1 HARDWARE AND SOFTWARE 35
10.2 FORMAT OF FILES 35
11 IT SUPPORT AND TRAINING 36

11.1.1 INTRODUCTION 36
11.1.2 MANUTENZIONE APPARECCHIATURE ED HELP DESK 36
11.2 IT TRAINING 37
12 IS PROJECTS 37
12.1 IS PROJECTS FOR 2014 37
13 APPENDIX 40
13.1 APPENDIX A: GLOSSARY 40
13.2 APPENDIX B: LIST OF ALL SERVERS INSTALLED IN THE CORPORATE INFO-CENTER 41
13.3 APPENDIX D: LIST OF CORPORATE SYSTEMS BY COUNTRY 42
13.4 APPENDIX E: DATA-FLOWS 42
13.5 APPENDIX F: LIST OF IT STANDARDS 45
13.5.1 HARDWARE 45
13.5.1.1 Server 45
13.5.1.2 Networking 45
13.5.1.3 Personal Computer 45
13.5.1.4 Printers and Plotters 45
13.5.1.5 PABX and telephone set 46
13.5.1.6 Cellular phone 46
13.5.2 SOFTWARE 46
13.5.2.1 Operating System (SO) 46
13.5.2.2 Business Applications 46
13.5.2.3 PC related software 47
13.5.2.4 Technical Business Applications 48
13.5.2.5 IT Security 48
13.5.2.6 EDMS and e-collaboration 48
13.5.2.7 Data Base Management Systems 48
13.5.2.8 Tools 48
13.5.2.9 Software Development 49
13.6 APPENDIX G: PABX NETWORK DIAGRAMS 50

1 INTRODUCTION
This document describes the whole Information System of the Astaldi Group for what refers to:
 Organisation;
 Processes;
 Technologies.
2 MISSION OF THE ISOD DEPARTMENT

The mission of the Information System and Organizational Department is to be a strategic partner
of our customers by,
 supporting effectively the Strategy of the Astaldi Group,
 developing business requirements in optimized solution aimed at improving processes of the
Group and creating a competitive advantage,
 simplifying creation, sharing and protection of the Group’s knowledge by selecting and
implementing the right Information Technology,
 Contributing to the continuous alignment of the Organizational model to the evolution of the
Group’s Business Plan and the growth of the Astaldi Group, in an efficient and effective way,
 managing specific program of quality improvement aimed at establishing reliable solution and
an adequate support.
3 JOB DESCRIPTION OF THE ISOD
3.1 Information System department

Here are the main job-descriptions:
 Support headquarters, countries and projects in selecting the right IS solution;
 Identify IT needs in the frame of the strategy of the Group;
 Plan the strategic evolution of the IS by defining an effective road-map;
 Analyse the evolution of IT technologies;
 Plan and control of the cost of the IS;
 Identify the IT architecture (technologies, applications, data infrastructure, etc.);
 Define and monitor IT standards;
 Analysis and proposition of new solutions in term of costs, benefits and implementation time;
 Coordination of IT projects in terms of design of IT solutions, identification of resources needed
and implementation of IT solutions;
 Cooperate in the development of the business workflow management;
 Coordinate the internal IT training in conjunction to the other departments;
 Manage and support of the current IS;
 Analysis of the results of the IT projects in order to identify possible correction activities;
 Identify, select and manage IT partners and outsourcers;
 Manage the IT disaster recovery plan;

 Manage the IT Service Desk;

 In conjunction with DRU, DP and PM, identify and train the local IT human resources;
 Monitor and evaluate IT suppliers;
 Support the Bid Department in arranging bid or pre-bid documentation
3.2 Organizational department

Here are the main job-descriptions:
 Upon indication of the CEO, verify the overall organizational alignment to the objectives of the
Strategic Business Plan;
 Manage, in cooperation with DRU, the update and development of the organizational structures,
supporting the Corporate Business Units in order to define and implement macro and micro
organizational structures;
 Manage and guarantee the delivery of Corporate projects concerning organization and processes
improvement;
 Monitor company processes with organizational impact on Corporate Business Units in order to
identify, in cooperation with the involved organizational units, the critical issues in terms of
efficacy and efficiency;
 Cooperate with the involved Business Units and with the HR Department to the qualitative and
quantitative human resources right-sizing in relation to actual and expected workloads;
 Support SGIG in defining and updating the Corporate functional chart;
 Manage, in cooperation with DRU, the job evaluation process in order to determine the value of
the job positions and verify their accordance with the adopted development model;
 Define and diffuse within the Group methodologies and instruments of organizational analysis;
 Cooperate with SGIG with regard to the impacts on the Company Integrated Management
System.
4 THE VALUE CHAIN

Here it is represented the IS value chain:

Figure 1: The Chain Value
5 THE “PENTAGON” MODEL

The Strategy of Information System is based on five dimensions used for defining the improvement
program in Astaldi since 2005:
1. Centralization
The centralization of the Information System has been
considered the first asset of the new program; The
Corporate Data-Center has been improved in order to
absorb the majority of the local Application Servers
around the world.
2. Business Continuity
Considering the importance of the Corporate Data-
Center, an IT Business Continuity program has been
launched in 2013 in order to create a Disaster Recovery
data-center in Milan; the new data center is expected to
be up and running in 2015.
The selection of IT functions to be included in the DR site
has been identified in conjunction with all related Process Owner and has been approved by our Top
Executives.
At the same time, we are taking the opportunity offered in the recent years by the Clouds services
that are spreading around the world.
3. IT Security
Taking in consideration the relevance of IT in our Group, we are very focused on IT security. In the
latest years, we have introduced several leading technologies in order to ensure that our information
is well protected:
 2005: Antispam (Symantec brightmail); replaced by the antispam technology of Office365 in
2015
 2006: Web Content Filtering (Websense);

 2007: Anti-malware (Symantec End-Point-Protection);

 2014: Firewall (Palo-Alto).
In the latest five years, we successfully tested three times the effectiveness of our IT security schema
with the help of very specialized consultants.
4. Process Reengineering
Reengineering of processes has been performed several times in order to improve the efficiency and
efficacy of our processes.
5. Spending Review
The optimization of IT costs has been achieved:
 Centralizing the Information System at Corporate Level;
 Defining special Agreements with the most important IT partners at Group level;
 outsourcing specific IT processes and functions;
 Reengineering specific IT process with the support of leading technologies.
6 POLICY AND SOP

The following table shows all IS related policies and procedures:
Identificativo Descrizione Rev. Language Issue date
PO-AST-DRU-004 Management of phisical access 1 IT 16/11/2016
POLc-AST-SI-001 Policy on how to use IT devices/services 0 IT, EN 05/10/2015
PO-AST-SI-001 Go live of Baan objects 0 IT 18/10/2004
PO-AST-SI-002 Replaced by POLc-AST-SI-001 1 IT 05/02/2009
PO-AST-SI-003 Management of data backup 3 IT, EN 16/05/2016
PO-AST-SI-004 Management of internal projects 0 IT 16/11/2010
PO-AST-SI-005 Management of IT issues 1 IT, EN 16/05/2016
PO-AST-SI-006 Management of third party updates 1 IT, EN 16/05/2016
PO-AST-SI-007 Management of Electronic Certificates 0 IT, EN 10/11/2015
PO-AST-SI-008 Management of Corporate User Profiles 1 IT, EN 16/11/2016
PO-AST-SI-009 Management of Italian PEC 0 IT 07/01/2016
PO-AST-SI-010 Disaster Recovery Plan 0 IT 22/12/2016
Figure 2: List of Policies e SOPs
Each document can be easily accessed by clicking the related link available in the Language column
of the above table.
Policies and Procedures in Italian have been issued via Sharepoint by the IGG department. The
English version has been distributed to all local IT Managers and F&A Managers via email by
Giampiero Astuti.
In March 2011, the Astaldi Group reviewed for the last time the Documento Programmatico Sulla
Sicurezza as required by the d.lg. 196/2003 (Privacy).

7 HUMAN RESOURCES
7.1 Introduction
In the frame of the Matrix organization of the Group, all worldwide IT people in the Group report
to the CIO.
7.2 Organization Chart

Here is the organization chart1 of the ISOD:
G. ASTUTI
(Group CIO)
Corporate IT Infrastructure Corporate Business Analysis Corporate Application Develop. Local IT Organiz.
Italia
Infor
A. Sorrenti (Max Italia) C. Aggravio S. De Giorgi A. Valente F. Salerni
Finance
C. Cretaio (Max Italia, 30%) C. Pieragostini G. Menna (Romana Inf.) M. Contreras
In-house Dev
A. Remigio (Media Point) C. Picchi (Infor, 80%) M. Quaglieri (Romana Inf.) W. Alcrow
Distribution
C. Cacciotti R. Cernosick S. Caputo (Romana Inf.) C. Riquelme
Estero
G. Paduano L. Pariboni E. Fernandez
R. Ricciardi M. Bianchi Turnaoglu Semih

Project
S. Caramazza Hubert Bigzik

AM
S. Lenzi (50%) ….
Figure 3: Organisation Chart of the ISOD

The list of all IT worldwide human resources is available at the following Sharepoint link.
Our group is also employing specific IT consultants both in Italy and abroad.
The picture below shows the functional allocation of each IT person2:
Human Res.
Sharepoint
IT infrastr.
Software
In-house
Tagetik
Cert.El.
eRoom
Mobile
Phone
Piteco
Vision
Client
Mana
PEC e
Baan
Persona EAM
Alessandro Sorrenti X
Andrea Remigio X
Caputo Simone X X X
Carlo Pieragostini Finance X X
Carmen Picchi Finance
Claudio Aggravio Fin. + SW Dev. X X X X X
Claudio Cacciotti MetroC MetroC MetroC
Claudio Cretaio X
Giancarlo Menna X X3 X
Gianni Paduano X
Luciana Pariboni Distrib. X
Marco Bianchi Proj + SW Dev. X X X
Matteo Quaglieri X X X3 X X3 X
1
Here is the meaning of each color used in the picture:
Green = permanent employee
Red = IT consultant (the name of the supplier and the % of allocation is also indicated)
2
The picture just includes IT people working in Rome

Human Res.
Sharepoint
IT infrastr.
Software
In-house
Tagetik
Cert.El.
eRoom
Mobile
Phone
Piteco
Vision
Client
Mana
PEC e
Baan
EAM
Persona
Rito Ricciardi X
Roberto Cernosick Distr. + Sw Dev. X X3 X
Silvia Caramazza Project X X
Stefano De Giorgi SW Dev. 3 SW Dev.
Stefano Lenzi X
Figure 4: Functional allocation of each IT personnel
7.3 Group CIO

Here is the main list of tasks related to the Group CIO:
 assuring that the ISOD is achieving its own mission;
 Supporting headquarters, countries and projects in selecting the right IS solution;
 Identifying IT needs in the frame of the strategy of the Group;
 Planning the strategic evolution of the IS by defining an effective road-map;
 Analysing the evolution of IT technologies;
 Controlling the cost of the IS;
 Identifying the IT architecture (technologies, applications, data infrastructure, etc.);
 Defining and monitoring IT standards in the Group;
 Approving new IT solutions in term of costs, benefits and implementation time;
 Monitoring and control of IT projects;
 Identifying the resources needed for the implementation of IT solutions;
 Managing the current IS;
 Analysing of the results of the IT projects in order to identify possible correction activities;
 Selecting and manage IT partners;
 Identifying and manage IT outsourcing partners;
 Managing the IT disaster recovery plan;
 Managing the quality level of the IT Service Desk;
 It's part of the Privacy board for Astaldi S.p.A.
 It's part of the Organization board for Astaldi S.p.A.
7.4 IT Project Leader

Here is the list of main tasks:
 Developing project plans, goals, and budgets; identifying resources needed;
 Developing schedules and methods for measuring results;
 Guiding and performing strategic analysis for the project;
 Organising and managing all phases of the project to ensure on-time completion;
 Assembling and coordinating project team members; assigning individual responsibilities;
3
Effettua anche i rilasci degli oggetti in produzione

 Preparing requests for proposals and conducting all necessary meetings to facilitate selection of
project services and products;
 Planning and overseeing the preparation and dissemination of project communications
7.5 IT Business Analyst

IT Business Analyst, expert on specific area of the IS, have to ensure the right implementation and
use of the dedicated IS.
Here is the list of main tasks:
 Working closely with management to prioritise business goals and information needs;
 Interpreting a project and the client’s requirements and evaluating all the options to
identify potential solutions;
 Examining existing business models and flows of data, discussing findings with the
client, and evaluating system specifications for business requirements;
 Designing and implementing the most efficient and cost-effective solutions;
 Implementing, supporting and controlling an inventory of applications used;
 Assisting in the development of, and migration to, new platforms.
7.6 Software Developer

Here is the main tasks related to Software Developer:
 Developing new software applications in partnership with business analysts and technical
architects;
 Upgrading existing software as the user organisation's needs change;
 Localising software products for different international markets;
 Testing software to ensure the code is correct, fixing ('debugging') errors where they
occur, and rerunning and rechecking the programme until it produces the correct results;
 Working with trainers and technical writers to develop user support materials.
7.7 Service Desk

Here is the main tasks:
 Providing assistance concerning the use of computer hardware and software, including
printing, installation, word processing, electronic mail and operating systems;
 Delivering highly complex technical information into terms and concepts that the end
users can readily understand;
 Working with outside vendors to ensure new equipment is successfully installed and/or
problems are quickly fixed;
 Logging and processing support requests using the Service Desk solution.
8 THE INFORMATION SYSTEM
8.1 IT Security
Astaldi has released a specific Policy (POLc-AST-SI-001) in order to ensure a standard and correct
use of all devices/systems and improve IT security.

In the following paragraphs will are going to describe all main aspects.
8.1.1 General guidelines

We identified three specific levels and for each of them we defined the guidelines and the software
to be used.
8.1.1.1 First level: Transport of information

Scope: connectivity until the transportation protocol.
Guidelines: Phisical/logical protection of all devices and Perimetral protection.
Software and Hardware in use: Firewall and Anti-malware.
8.1.1.2 Second Level: Interoperability

Scope: Use of comunication services (e.g. e-mail or file transfer).
Guidelines: Data encryption and Access Control List.
8.1.1.3 Third Level: Cooperation among applications

Scope: Integrated automatation of all applications’ processes
Guidelines: Authentication between users and processes, Authentication across processes and
Security of work-flows;
Software and Hardware in use: Microsoft Active Directory, Microsoft File System or NAS,
Software encryption (e.g., Exchange + Outlook), Digital certificates (when needed).
8.1.2 Policy for the management of data security

Our first objective is to protect all our digital information from any kind of internal or external
threats.
This policy is aimed at:
 All our digital information are protected against unauthorised access;
 Ensuring privacy;
 Ensuring that no data is changed from unauthorized acess;
 Ensuring that everybody can access information when needed;
 Personel is trained on how to handle company data;
8.1.3 Microsoft Active Directory (AD)

We use AD to manage worldwide access to almost all Corporate applications. Review paragraph
13.3 for a complete list of systems.
We are currently analysing the feasibility to move our AD into the Microsoft Cloud (Azure).
All local IT managers are using AIM (in-house software) to handle all local objects (users’s profiles,
Groups, Office365 licenses) of the Corporate AD.
AIM also handles the syncronisation of the Corporate AD and Office365.
8.1.4 Physical security of Corporate Data-center

Only a restricted number of people can access the Corporate data-center with their own badge.
The badge system logs all accesses.
Please refer to paragraph 8.1 and to SOP PO-AST-DRU-004 for more information.

8.1.5 IT guidelines
Here are the main technical and organizational characteristics:
 Policy for the management of user profiles:
 User profiles are managed using SOP PO-AST-SI-008;
 Passwords:
 They must be composed by at least eight characters;
 They should contain at least three of the following group of characters: Numbers, uppercase
letters, lowercase letters and special characters;
 They should be changed every ninty days;
 They should not contain the last five passwords;
 They should not contain part of the user name
 User profiles is disabled if a wrong password has been entered for five consecutive times.
 Request for changing ACL:
 ACL are changed based on a written request of the Process-Owner
 Access to network folders:
 Only the domain administrator can change this privileges;
 every request should be fully documented;
 No folders can be created with a written privilege for all users;
 Mailboxes:
 Each mailbox should be accessed only by the mailbox owner;
 Each user can request (creating a Service Desk ticket) to forward its own mails to another
account;
 The system is protected against virus and Spamming4;
 Virus e Spy-ware:
 The anti-malware systems have to be updated at least twice a day;
 Each system has to be automatically updated;
 Internet surfing:
 A specific web blocking system (websense) has been implemented;
 Specific antivirus has been enabled;
 A specific Automatic Intrusion Detection (with logging) has been enabled;
 Period Audit Trails are managed periodically.
We use the “Group Policy Manager” of Microsoft Active Directory to set-up the security policies
and the Audit Trails.
8.2 Info-Center
8.2.1 Introduction
The Central Information Centre is located at the Astaldi Headquarters in Via G.V. Bona. No. 65
Rome.
All main systems are backed up for maximum security.
8.2.2 Power Supply

Electricity connection is ensured by two main UPS (One is the back-up for the other).
4
We are currently using Microsoft Office365 Antispam technology

These UPS ensure about 30 minutes of autonomy and throughout this period the generator with a
200 liter tank capacity takes over.
The generator has sufficient capacity to supply electricity to the whole data center for one day.
8.2.3 Air Conditioning system

The inside temperature is kept between 20C° and 23C° in all circumstances thanks to the two main
cooling systems (one is the back up for the other) located inside the info-center.
The power units are located in a dedicated, external room and the entire system can be monitored
in remote.
8.2.4 Fire System

A fully automatic fire alarm system has been implemented and it is connected to specific devices
located under the floor and on the ceiling to detect the presence of smoke or fire.
In case of smoke or fire, gas will be automatically used in order to handle the fire.
The Info-Center is covered by a CPI (certificato prevenzione incendi) that has been written based
on the activity 82, D.M. 16/02/1992.
Every three years, the local Fire Brigade certifies the whole system.
8.2.5 Security System

Outside supervision and monitoring system is composed of the following elements:
 A laser beam outer barrier system;
 Eight closed circuit video cameras;
 An unarmed security team that serves sixteen hours per day;
 A radio system that is attached to the headquarters of security forces. Thanks to the
system, if the alarm goes off after the closing time security forces can proceed to armed
intervention within 30 minutes.
Fifteen closed circuit cameras control the building interiors. Access to the building and data center
is protected by badges that have a system log that records all access.
Three fiber optic cables connected to three different operators ensure internet connection and all
network connection devices in the system have back-ups. (Router, switch etc.)
All main IT services are virtualised on six VmWare version 5 phisical nodes.
8.2.6 Lightning Protection System

In spite of the fact that according to CEI EN 62305-2 regulation the building has already been built
with a lightning Protection System, for better security we also installed a Faraday cage.
Besides, according to DPR 462/01, all electronic equipment are verified by a public company that
has been authorized by the Ministero dello Sviluppo Economico.
8.2.7 Disaster Recovery

A disaster Recovery site has been implemented in the main Infracom’s Data-Center based in Via
Caldera in Milan.
In that data-center, we implemented two racks using the colocation model.
The site has been successfully and fully tested in September 2016.
The related Disaster Recovery Plan has been finalised in December 2016.

8.3 Telecomunication
8.3.1 General description

Astaldi has selected a communication environment based on a star model, where the corporate info-
center provides IT services to all countries and projects.
If available, a fiber optical backbone has been implemented in order to improve performance and
enhance stability.
All main LAN have been created using switch that allow us to build VLAN in order to improve IT
security and boost performance.
All IT devices are connected to the Corporate info-center using a state-of-the-art WAN:
Figura 5: AstaNet: Wide Area Network

This network allows us to quickly implement new geographical sites.
Locally, most of the IT services have been centralised to the Corporate info-center.
As indicated in the above diagram, all geographical sites have been connected to Rome:
 Italy: via an MPLS network developed by Fastweb;
 All other countries: via local Internet connection5
8.3.2 Internet
The internet service has been implemented using two Internet lines:
 200mbps fiber optical connection provided by Infracom
 100mbps fiber optical connection provided by BT (back-up of the first line)
5
In some cases, a VPN tunnel has been implemented using Watchguard firewall in order to improve IT security

At the end of 2014, we also enabled the Autonomous System model.
8.3.3 WiFi
In the Corporate building in rome we have also implemented a wifi based on HP technology.
The following services are currently available:
 Astaldi_utenti: to be used by all internal PCs;
 Astaldi_mobile: to be used by all internal smartphone;
 Astaldi_guest: to be used by guests;
 Astaldi_Auditorium: to be use in the Auditorium;
 Astaldi_Sale Riunioni: to be used in the new conference rooms.
8.4 Phone and Video Conference
8.4.1 Mobile phones

A local provider has been selected in each country for getting mobile phone service.
In Italy, we are using Vodafone since 2010.
Smartphones and tables are also used for accessing Corporate mailboxes.
At the moment, we are using the following smartphones:
 Managers: iPhone, Samsung Galaxy Note and Galaxy Sx;
 All other employees: Samsung Galaxy Express.
8.4.2 Fixed phones
8.4.2.1 Introduction
A local provider has been selected in each country for getting this service.
In Italy, we are using Fastweb since 20046.
Currently, we are using the following models:
 New implementations: Voice-over-IP
 Old implementations: PSTN
8.4.2.2 New implementations

This architecture is using the current WAN in order to enable voice and fax communication between
counterparts.
PABX are connected to enough communication lines for handling all installed phone devices.
In the latest years, only IP phone devices, connected to LAN switches, are used.
Here are the main benefits of this model:
 The WAN is also used by phone devices;
 Communication costs are minimized;
 The technical infrastructure is simplified;
 A Fall Back functionality is still possible on PSTN/ISDN;
6
Some old phone lines will still be provided by Telecom Italia for several reasons.

 The system allows us to monitor the status of each users on the entire IP network;
 A global directory system is used;
In 2010, we decided to purchase Cisco for all new phone environment7.
In 2015 we migrated the Coporate PABX to Cisco. Several Italian sites/job sites are now using it
without a local PABX.
Please check “Appendix G: PABX network diagrams” for more information about the PABX
network.
8.4.2.3 Old implementation

The phone environment is mainly based on Analogic PABX.
8.4.2.4 Video Conference

The Group has implemented a Video Conference System, based on Polycom devices, to all main
geographical sites in order to:
 Reduce the number of travels and consequently all related costs;
 Increase the productivity of employees.
Here is the list of all Polycom devices that have been installed8:
Figura 6: List of Polycom devices
8.5 Business Applications and Tools
8.5.1 Functional coverage by Business Application

The following table shows the functional coverage of the main business application:
7
The first project that has adopted Cisco has been Metro-5 in Milan.
8
The detailed document is available here

PROCESS SOFTWARE APPLICATION

Web site Internet Site
ECM dedicated to projects Sharepoint
Intranet and ECM Sharepoint Arxeia on Sharepoint Me!
Statutory and Management Consolidation Tagetik-CPM
Communications Exchange Skype Concerto-Pec Fax e PABX
General Ledger Baan-Finance
Cost Control Baan-Project Linea-32 / Primus
Treasury and payments Piteco-Evo Piteco-CBC Uniweb / TLQ Swift
Asset Management Infor-EAM
HR Management Talentia Zucchetti In-house SW Gemms
Purchasing and warehousing Baan-Distribution Bravo-Solution
Planning Primavera MS-Project Tylos
Management of tenders STR-Vision Office
Management of Legal activities In-house SW
Risk Management Tagetik-RM Fincad Office
B.I.M. Revit NavisWorks Civil-3D
Engineering Autocad Stratos …
Management of internal Audits Mega
Environmental monitoring Office SW vari
Figure 7: Functional coverage of each application

Each of the above system will be presented in the following chapters.
8.5.2 Software allocation by Country

Paragraph 13.3 shows the extension of each Corporate System by country.
8.5.3 Internet sites

Our Group has developed several Internet sites (one for each legal entities or countries).
Astaldi S.p.A. has implemented the current Internet Site (www.astaldi.com) in 2008 and is managed
by Dnsee (www.dnsee.it).
IR&C manages all updates with a specific software.
In the internet site, we in-house developed the following sections:
 Working in Astaldi;
 Internal Dealing;
 Electronic Delivery of Proxy (Shareholders Meetings).
8.5.4 Internal Dealing

Internal Dealing is the software that specific people9 must use for signaling to Consob all their
transactions in the Astaldi’s shares.
The system has the following functionalities:
 Management of people and companies related to each user;
 Management of transactions.
9
Specifically, Board members, CEO, President, etc.

8.5.5 Project Planning and Management System
The Project Module of Baan is the software of reference in the Information System for all activities
of Planning, Cost Control, Quantity Survey and generally for the Management of a Project.
Astaldi has implied many resources to cover all requirements; the result is the realization of an
integrated system, based on the best available standard packages and tailored in order to satisfy all
needs of big Italian and International Construction Projects.
8.5.5.2 Procedure Flow

You can find hereafter all activities managed by the System during a Project lifecycle, starting from
start-up activities to finish with actual data details.
During a Project start-up all main data are defined, so that a budget can be prepared accordingly.
Activities to be executed are the following:
 Creation of Project General Data definition; creation of a WBS structure; creation of
Intermediate Projects for Plants and Machinery
 Analysis of the type of Budget to be implemented (budget with or without a Contract,
first or after first budget version, and so on)
 For the first Budget (first version) the system allows to link all analysis elements to
specific Work Packages belonging to the WBS Structure. The user can associate a
Planning Schedule to the cost centres and consequently a monthly Economic Budget can
be elaborated. Options for a time-phased Budget are the Economic multi-year Budget,
the Economic multi-year Plan, the Financial multi-year Budget. There is also the
possibility to create a Budget based on the costs analysis of the Bill of Quantities extracted
from a module dedicated to the Contract Management. Cost analysis will be associated
to each pay item, which brings its unit price and a forecast quantity, and then linked to
the Work Package as usually.
 From the Budget the user can also re-arrange all types of information to elaborate a
Project Commitment Plan, for the Planning of Purchases.When a Budget is updated (at
an after first version), based on actual data information, there will be a generation of the
"actual information" that represents what has been executed until a new Budget revision.
For the Budget to complete, there will be a revision of WBS structure, price items or
elements, quantities and analysis. The economic Budget will be elaborated with the same
options as before. The Commitment Plan can be revised consequently.
During the progress of the Project and the collection of actual data, the system allows to manage the
monthly progress (the effective production), to be compared with the budget and verified. There is
the possibility to control the Subcontracts, considering all contractual conditions (i.e. single or
double currency, advance payments, guarantee retentions, forecast quantities to be executed, and
more) and issue monthly Statements of Works for Subcontracts, which will be automatically
forwarded to specific Project cost centres and General Accounting. It is allowed to control actual
hours for workers and employees, to manage costs relating to Machinery and Intermediate Plants.
User can collect and check all kind of actual transactions, i.e. fiscal depreciations for Assets,
capitalizations, issues of materials from warehouse, checking of costs from Purchase Orders, costs
and revenues from General Accounting.

8.5.6 General Accounting, Account Payable, Account Receivable, Bank Accounting

In the accounting system are all features that are normally used by an administrative office and in
particular:
 General Accounting
 Account Payable
 Account Receivable
 Cash and Bank Accounting
The various packages are closely integrated, this implies the presence of common data to all
applications of accounting (general and industrial) and logistics.
Following there are descriptions of the basic functions of each module.
8.5.6.1 General Accounting

The General Ledger module is the core of the administrative management of a company. In fact, in
this module there are the chart of accounts to manage general accounting and statutory and sub-
structures (named dimensions) to manage the cost accounting.
In this module are:
 recorded and structured the various types of accounting transactions;
 printed reports used in accounting management (journal books, trial balances, accounting
statements, etc.);
 printed balance sheet and profit and loss statement;
 printed tax and legal reports (VAT purchase book, VAT sell book, etc.);
 manage the provisional and year end closures.
8.5.6.2 Account Receivable

It contains all the functionality to manage the Customers accounting, whose base of data is
represented by the Customer Ledger, containing references to all the open and closed entries,
(invoices to be received and collected, and their receipts sorted by customer).
In this module you can perform all audit activities, that includes control of invoices not yet received
and synthetic control or analytical of the age of credits, etc..
The Accounts Receivable module is a sectional of the General Ledger, consequently, all transactions
are reflected automatically in the General Accounting.
8.5.6.3 Accounts Payable

It contains all the functionality to manage the Suppliers features; data are represented by Ledger
Suppliers, containing references to all open and closed entries, invoices to be paid or already paid,
and their payments sorted by Supplier.
A basic feature of this module is the possibility to insert and control invoices related to purchase
orders issued in order to approve or not the payment or to require the Supplier the necessary
corrections.
Invoices can be referred to a specific contract, to a specific purchase order, or overhead expenses.
Payables to Suppliers can be monitored and can be controlled (analytical or summary) by aging
analisys.
The Accounts Payable module is a sectional of the General Ledger, consequently, all transactions
are reflected automatically in the General Accounting.

8.5.6.4 Cash and bank management

The module manages all bank and cash transactions related to:
 Payment of purchase invoices
 Receipts of sale invoices
 Not allocated payments and receipts
 Bank expenses
All information managed in this module are used to create the statement of cash flow and as a
database to generate the financial forecast of the company (and for each project as well).
8.5.6.5 Digital archiving

In 2010 Astaldi Group has set up a system for digital archiving of tax and fiscal reports with
Postecom as technological partner.
The following figure shows the status of archiving for type of document:
VAT Book Art.17 Stock Journal
VAT Book Fees Stock Journal Summary
VAT Book Purchase Fixed Asset Book
VAT Book Sales Auxiliary Entries Report
VAT Settlement Sales Invoices to Public Clients
Consolidated Journal Report Journal Report
Journal Report Summary
Figura 8: Stato dell’archiviazione sostitutiva per classe documentale
The legal entities that are running with the digital archiving system at 30 September 2015 are:
Astaldi s.p.a. Astaldi Honduras branch AS.M.
Astaldi Abu Dhabi branch Astaldi Guatemala branch Cosat
Astaldi Algeria branch Astaldi Costa Rica branch Astaldi Concessioni
Astaldi Bulgaria branch Astaldi Nicaragua branch Avrasya
Astaldi Panama branch Astaldi Romania branch Avrasya Metro Grubu J.V.
Astaldi Cile branch Astaldi Polonia branch Co.Meri
Astaldi Bolivia branch Astaldi Stati uniti branch M.O.Mes
Astaldi Guinea branch Astaldi Turchia branch Astaldi Arabia e Qatar
Astaldi Colombia branch Astaldi Venezuela branch Ospedale del Mare
Astaldi Peru' branch Astaldi Tunisia branch Passante Torino
Astaldi Congo branch Astaldi Tanzania branch Romairport S.rl.
Astaldi El Salvador branch Astaldi S.Car. Scrl
Astaldi Guinea Bissau branch Garbi Linea 5
The documents must be digitally signed using a smart-card Actalis: after that they are sent to the
partner for the digital storage.
The system allows access to all the documents filed at this address: https://postedoc.poste.it
8.5.7 Corporate Performance Management (CPM)

Corporate performance management software from Tagetik manages complex financial, statutory
and management consolidation processes in a single structured and controlled environment that
assures consistency across financial, statutory and management reporting.

As a result, Tagetik improves visibility and transparency, of the financial, statutory and management
consolidation process, shortens closing and reporting cycles, supports requirements of regulatory
changes and manages multiple accounting standards, reducing Total Cost of Ownership (TCO) and
cycle time of the entire consolidation and reporting process.
Financial, Statutory and Management Consolidation features and benefits include:
 Chart of accounts and rules: Define control groups between main accounts and related
details/variations to be displayed in reports.
 Legal entities & hierarchies: Define legal entities and reporting units, and set unlimited
hierarchies to support complex ownership requirements.
 Legal structure: Conduct event-based management of the history of your legal structure
(% of ownership, financial investments variations, net equity variation) by period,
managing multiple scenarios (holding and sub-holding levels) and consolidation rules.
 Currency conversion: enter or load data in virtually any local currency and easily see
currency and exchange rate differences and impact on consolidated actuals.
 Accounting principles: Generate multiple, simultaneous consolidations for U.S.
accounting standards (GAAP), XBRL, and International Financial Reporting Standards
(IAS/IFRS) from a single data source without having to run multiple consolidations.
 Decentralized web intercompany (IC) matching process: Define groups of accounts for
intercompany (IC) matching with relative reconciliation accounts, thresholds and
graphical web dashboard for matching between entities from within a built “IC Cockpit”.
 Full auditability: Ensure complete data traceability from ERP to final reporting and
disclosure, with automatic financial intelligence, powerful controls and validations, and
detailed audit trails.
 Automatic/manual data collection: Gather data, do intercompany (IC) matching, create
pre-consolidation adjustments, add manual entries and monitor approvals workflows for
each phase all in a single solution.
 Controls and Diagnostics: At each step of the process from data entry to consolidation
and reporting, by using automatic financial controls, validations checks, and balances.
 Powerful reporting: Manage all financial reporting requirements, including pre-built logic
for credit/debit signs, double-entry logic for creating cash flow statements, automated
rounding and scaling, and drill-down capabilities for reporting and analysis at all levels
of detail.
 Segment reporting: Aggregating data “on the fly” by defined segment structures
 allows for simulation and ad-hoc analysis without frequent consolidation. Designed
 to allow autonomy at the segment level while meeting corporate requirements.
Tagetik has been upgraded to version 5 in October 2015. By the end of the year, the following two
improvements will be implemented:
 Publish Tagetik service to Internet in order to avoid the use of VPN (done in December
2015);
 Replace its own users profiles with the Active Directory ones in order to avoid double
profile management.

8.5.8 Treasury and Finance
8.5.8.1 Piteco Evolution

Piteco allows real-time monitoring of the cash situation thanks to the connection to the system of
Corporate Banking (TLQ) with the major banks. This monitoring allows the optimization of
financial resources available and the timely analysis of related financial expenses.
The following image shows all the modules that have been developed by the factory and (in red)
components used within the Group.
Piteco allows to:
 manage all baank accounts (c/c, financing, other accounts, etc.) and manage advance cash
balances;
 forecast and evaluate the Group "cash flow" situation and its impact;
 manage the payment orders and receipts;
 transfer the bank movements in bank transactions in the accounting (ERP);
 check the bank operation and performance and their evolution over time;
 implement a financial planning;
.
Reports have drill down functionality
in order to permit to get on and off in
the level of analysis of the data and
export information to other systems
in standard formats
8.5.8.2 Piteco CBC

The system is used to manage the approval flow of bank transfers. All internal approvals must be
signed by the smart-card Actalis that have been assigned to all prosecutors.
8.5.8.3 Quercia TLQ

Is the Corporate Banking tool that allows us to:
 Submit the bank transfer orders to each bank
 Account all debits and credits transactions recorded on each bank account.
We are currently migrating TLQ to Uniweb.
8.5.8.4 Fincad Analytics Suite

Corporate Treasury Department uses Fincad as specialised financial library in order to support its
own Management of Financial Risk (Interest rate and Exchange rate).

8.5.8.5 Bloomberg e Reuters

At the moment we use both Bloomber and Reuters as Info-Providers.
Here are the main platforms in use:
 Reuters Eikon for two users (President and Investor Relations);
 Reuters Eikon for WM for five other users (CEO, GM e Treasury Department):
 Bloomberg Anywhere for one user (CFO).
8.5.9 Asset Management

Astaldi implemented a software used to manage the Fixed Assets for administrative purposes.
Using specific parameters per Country, the software can fulfils both the Italian fiscal regulations
and the fiscal regulations of the Countries where Astaldi is operative.
It is multi-currency with an exchange daily rate table and it is multi-languages.
The software is able to group the fixed assersi in homogeneous groups, manage and update a fixed
assets registry; each asset is easily located and it is possible to control all movements during its
lifecycle; all types of fiscal depreciation are immediately considered, including the printing of fiscal
journal. The system provides all kind of reports for technical and financial information.
The system is currently being substituted by EAM software (Enterprise Asset Management). EAM
will be integrated with the company ERP in order to eliminate all data duplication; EAM will offer
all functionalities relevant to the last received requirements.
Furthermore, the system will be used in Rome and abroad among all Astaldi Sites with a web access,
on a common environment, customized for each Country requirement, multi-lingual and multi-
currency, based on a unique item codes registry.
8.5.10 Procurement & Logistic Management System

Astaldi has adopted the following systems for running the Procurement & Logistic procedures:
 Baan Order Management & Warehousing Baan;
 E-procurement system;
 Expediting System.
8.5.10.1 Baan Order Management

This package is used for running the following processes necessary to fulfill the Astaldi procedures:
 Purchase Requisition, where the Site or the Headquarters indicate their project needs
 Request of Quotation, converted directly from the Purchase requisition and sent to the
selected suppliers to let them forward the quotation.
The suppliers’ offers inserted in the module permit a comparison for choising the best suitable
quotation.
 Purchase orders, converted directly from the Request of Quotation that can include
services, rentals and materials and fixed assets. The system foresees also the creation of
open purchase orders to be partially received according to project needs.
The system allows the users to operate in 4 languages (English, French, Spanish and Italian) while
most of the reports are also done in the languages of the Countries where Astaldi is present
(i.e.Russian, Polsky, Rumenian and so on).

8.5.10.2 Baan Warehousing Management

This package is used for running the following processes:
 Entrance of the materials on the basis of the Purchase Orders created and released to
warehouse;
 Location of the stored goods by using the locations by item/warehouse
 Exit of the materials from the warehouse to the different activities of the project using the
FIFO method
 Transfer orders among warehouses of the project (exits/entries)
 Safety stock and re-order point, used above all for strategic materials
 Slow-moving analysis by item/warehouse
 Warehouse stock valorisation that can be performed with both methods, a monthly
MAUC for the administration, a FIFO method for the warehouse movements and project
costs.
8.5.10.3 General Item Data

For running most of the processes in Baan and mandatory for Order & Warehousing management,
Astaldi updates the General Item Data sessions that includes item for materials, fixed assets, services
and rentals.
Some of the grouping information included in the Item Master data are used for stock and project
reports and analysis.
It has been created a repository for the standard Item Master Data to be used as a basis at launching
of new projects.
The standard Item Master Data is available in 4 languages English, French, Spanish & Italian.
For administrative reporting purposes is also available a Russian version for the Russian Projects.
8.5.10.4 The eProcurement System

Astaldi adopted software to manage the e-procurement all over the world.
The vendor management solution is a web application that includes the procedure for the suppliers
qualification according to their specialisations so to have a Unique Suppliers Register.
The qualified Suppliers are invited to provide their best Offers accordingly to the inserted Requests
of Quotation. Those Offers will be then evaluated in a Offer Table to let the Procurement
department choose the best suitable quotations for the project and start the dealings.
The software grants homogeneous and standard documents for all competitors and the complete
traceability of each phases of the supported processes.
8.5.11 Tenders Management Software

Since 2013 Astaldi has worked on STR Vision, a new Tenders Management software with some
standard and customized improvements, a lot better if compared to its predecessor PV2. The
development of a Tender Project with Vision consist of a Price List of unit pay items, that will
compose the Bill of Quantities of the final Offer. All pay items will also have costs analysis based
on a General Item Registry, where Resource elements are contained. It is possible to combine basic
resources with Intermediate works and Items, such as Plants, Machinery and generally all kind of
intermediate productions or activities that can be determined by a tangle of basic resources and
analyzed items.

It is possible to group all sorts of information by using some drivers, such as WBS structure and
others that will be defined case by case. Several reporting tools are available, such as the “pivot”
mechanism inside the system, based on an “excel-like” interface, and some printouts that can be
directly settled by the user according to category, type of data and desired layout.
The system is used in the Astaldi Rome Headquarters and is starting to be diffused also abroad
among all Astaldi’s International Branches with a web access.
8.5.12 Enterprise Content Management System (ECMS)
The use of ECMS (i.e. an information-technology system exploiting the Internet standards to enable
groups to communicate and collaborate more effectively, irrespective of their physical location and
time zone), provides considerable advantages to the Group.
Our business sector presents a remarkable number of entities having the following characteristics:
 being distributed over a geographical area;
 belonging to different companies;
 taking part in the activities of execution of the works at different points in time (time asynchrony);
 heterogeneity of roles.
Therefore, information-technology coordination procedures are actually required in order to better
organize the operational-managerial activities carried by any of the entities involved.
In order to improve the efficiency, productivity and flexibility of such a complex organizational
structure, it has been deemed advisable to implement a collaboration environment enabling people
to communicate, to share ideas, documents and processes between them. The coordination between
the various entities is, therefore, ensured by both the use of a Web-based instrument and by
automated work-flow processes managed by the system.
The system has the typical characteristics of e-Collaboration tools:
 Open system: The portal is based on standard architectures allowing it to easily integrate with any
information-technology infrastructure.
 Scalability: The Platform selected, specifically designed for decentralized companies, allows to
flexibly fit the project's varying dimensions in order to more effectively manage the ever-
increasing volume of contents, heavy traffic loads, the increasing number of users and complex
work-flow processes, while preserving system's high-end performance.
 Safety: The system, enabling to restrict the access to information and services, allows
organizations to make their contents available to a wider range of collaborators, so as to keep the
security of proprietary information unprejudiced. All the data stored in the repository are fully
protected by a specific ACL (Access Control List).
 Integration: The system, by being able to manage any type of content, allows to integrate in its
own platform structured/destructured data originating from almost any source.
 Effectiveness of presentation: Each user has access exclusively to the information/services the
same is authorized to
 Multilingual support: The system is provided with a multilingual interface
 Support to the most important market standards: The system supports all the most important
market standards (browsers, HW and SW platforms)

8.5.12.2 Main areas

The environment generally contains:
 area relating to the Intranet of the Group;
 area relating to tenders;
 area relating to construction projects.
8.5.12.3 Main functions

Here are the main functionalities:
 The management of document sharing by means of a powerful versioning engine;
 The full management of chats and forums;
 The management of Calendars and or Real-Time services;
 The management and planning of activities;
 The management of communications and notices relating to IT updates;
 The advanced search of contents;
 The management of an e-mail notification system on the changes affecting the contents;
 The management of expired pages and contents;
 The management of Work-Flows.
8.5.13 Self-service portal (Me)
Me, presently available only for Italian employees, is the access point to specific applications and
data such as:
 Global Address book;
 Payslips;
 Request of absence;
 Mobile traffic.
The portal is based on a Document Repository including both structured and destructured contents.
8.5.14 HR Management
The Management of Personnel is ensured by four applications providing the following functions:
 The management of pays and the fulfilment of law obligations connected therewith;
 The management of human resources;
 The management of accesses (Badge);
 The collection of data from peripheral units and the feeding of the same to the two applications
mentioned above;
 Management of Business Travels and Bills of Costs
8.5.14.2 Payrolls and Salaries/Wages (Zucchetti - Deloitte)

Its structure is constituted of a table-shaped structure managing any kind of information relating to
the contract, social security and tax aspects.

The contractual data of the main collective labour contracts are pre-loaded by the software supplier
and may be used and customized by the user in order to adjust the same to the latter's requirements,
thus facilitating the system implementation process.
Moreover, all the social security and mandatory insurance contribution percentages due to the
various institutions, the amounts due according to the various laws (family allowances, tax
allowances, etc.), tax and contribution exemptions (business travel allowances, tickets, etc.), the
parameters necessary to determine applicable percentages (severance indemnity revaluations,
IRPEF tax brackets, etc.) are already loaded in advance, including any other thing as provided for
by the laws in force.
The variable entries of the pay bill relating to the payment of overtime work, additional amounts,
supplementary pays and anything provided for by the contract are already set in advance on the
basis of the laws applicable to labour contracts.
The user may modify and update all the existing parameters and information so as to customize the
system according to its specific requirements or as may be required by amendments to the contract
or to the law.
Prior notice of any change resulting from the employee's career advancement in terms of position,
grade, wage/salary increase and detachment (transfer to a new office, relocation), promotions
affecting his/her conditions may be given to the personnel master records by providing the data and
information required to automatically take into account such changes in due course.
The monthly input of payroll data may be managed manually, by entering the data in the presence
calendar, or automatically by means of a connection with remote attendance-detection systems
reading the data stored on a magnetic carrier.
The payroll process, further to determining the amounts due to each member of personnel, also
determines the amounts to be allocated to provisions for deferred remuneration relating to additional
pays, bonuses, leaves, abolished public holidays, reduction of working hours.
Social security and mandatory insurance contributions, taxes, etc. are thus calculated.
The corresponding cost of personnel attributable to contribution is also determined as percentage to
be borne by the company and by the member of personnel.
All such data are a very important source of information for subsequent statistical studies,
accounting registrations, determination of costs and definition of budgets.
Moreover, the system is able to store data by date and to make them available any future check as
may be necessary.
During 2014 started a project whose target was the comprehensive review of all activities related to
the processing of payrolls and salaries. The scope was to migrate to a new software (Zucchetti) and
give in outsourcing most of these activities, reducing the number of people dedicated to this work.
Partners selected for outsourcing were Deloitte for the Operations about payroll management and
Zucchetti as software solution.
The project, completed in 2016, has assigned the following activities to the Human Resource
Department:
 Update of all the basic data information in Zucchetti;
 Collection and submission of monthly data information to Deloitte, through software developed
in house;
 All relationships with social security institutions and heath care.
All control activities are performed by the outsourcer.

8.5.14.3 Management of Human Resources (Talentia)

This is a fully web-based modular system satisfying the human resources management needs.
Talentia is modularity and adaptability to Astaldi organization, it has a customized user profile
access, easy integration with different payroll system, user friendly interface and Multilingual (Ita,
Eng, Spa, Fre).
At present, here are the main modules in use:
 Employee records, curriculum and compensation & benefits data (People);
 Definition of the organizational structures (Organization/HRcharter);
 Work Force Planning (WFP);
 Performance management and appraisal;
 Reporting;
 New Careers section of the site Astaldi:
 Section available in 4 languages
 Career Paths and ad campaigns in multiple languages
 Possibility for candidates to update their CV using a personal username and password
 Recruiting.
The system actually contains about 20.000 employee records, more than 1.500 organizational units
and more than 55.000 CVs of external candidates.
Talentia is the data source of self-service employee portal «Me», Intranet Portal SharePoint, Outlook
and travel management system «Travelmatic».
Next updates during 2016 will be:
 Self-service module that allows each employee to update its own information;
 RIAS’s digitalisation;
 HR development module integrated with the Performance Management and appraisal;
 Management of Surveys.
8.5.14.4 Management of accesses (Gemms)

This system allows us to detect personnel attendance at office premises and sites by reading proper
Badges suitable for being read by proximity sensors.
At present, the system is used at the following units:
 Gruppo Astaldi Head-Office in Via Bona (Rome)
 Head-Office of the Project of the Line 5 of the Subway of Milan
 Project of the Line 5 of the Subway of Milan
 Astaldi office premises located at Via Adige, Milan
 Sartori (Brindisi)
 Metro-C in (Rome)
8.5.14.5 Management of business travel and expense reports

This process has been covered by an internal system (developed in Powerbuilder and based on
Sybase) until November 2013.

Starting from November 2013 the system has been migrated progressively on an outsourced solution
produced by Contur called TravelMatic.
We also proceeded to review the process and its Travel Policy (regulated both by the operating
procedure PO-AST-DRU-002).
The new model has been extended in 2014 to almost all Italian companies.
8.5.14.6 Presence Detection of staff and Payroll Data Collection Items

This application is mainly used for collecting data from the peripheries (Sites projects and Yards)
to feed other two modules (Zucchetti and Talentia).
The application has been implemented internally and is used to cover the following requirements:
 Presence Detection Daily Staff
 Collection of all remuneration information for the payroll calculation
 Managing Diseases / Injuries.
The system captures daily data related to the number of personnel in each operating unit. This phase
is also prepared for the acquisition of data from external systems with detection of the inputs /
outputs via badge, in the case of this system, the interface is already implemented with software
Gemms.
8.5.15 Maintenance Control System

This software, produced by Caterpillar, is used for managing all assets from a technical point of
view.
 To plan the maintenance activities for each single equipment;
 To track the use of spare parts, maintenance activities and cosumbles;
We are progressively migrating it to EAM.
8.5.16 Engineering Modules

It includes all functionalities related to the production of engineering documents (e.g., 3D drawins);
most of these documents are produced with Autodesk software (e.g., Autocad).
8.5.17 Building Information Modelling (BIM)

Astaldi has adopted the Building Information Modelling methodology since 2014. It consists of a
collection of graphical and non-graphical information associated to an intelligent model, created
and developed by the technical design teams. Such an intelligent model needs specific tools, which
typically are an evolution of the classical CAD software.
Astaldi has chosen the Autodesk Suite to comply with most of the requirements of the BIM.
According to the specialty of the project, Autodesk Revit shall be used to cover the exigencies of
the BIM design activities; in case of infrastructure projects, also Autodesk Civil 3D may be used.
With Autodesk Navisworks it is possible to control the design and apply coordination checks and
verifications over the model when all disciplines are merged together.
8.5.18 Environmental Monitoring System and Health and Safety System

All documents produced by these systems are normally managed in the Intranet.
8.5.19 Microsoft Office365

In june 2015, the Astaldi Group signed a worldwide Enterprise Agreement with Microsoft in order
to acquire specific products and services.

Among them, we acquire the Microsoft Office365 E1 and E3 plan.

The following tables shows the number of products and services we acquire in June 2015 for each
country:
QTY 2015
QTY 2014 Office Win Skype SQL Win Win
Country
Core CAL 365 SRV For Srv SP Srv Srv
E1 CAL Busin Std Srv Std DC
UAE 5 1 1
Algeria 140 130 130 5
Saudi Arabia 8 6 6
Canada - Montreal 187 22 22 5 1 3
Canada - Goose Bay 394 394 5
Canada - TEQ 56 56 0
Chile 210 315 315
Costarica 7 4 4 4
Honduras 74 79 79 5
Nicaragua 8 30 30 5
El Salvador 92 32 32 5
Italy 942 664 664 25 20 2 1 6
Italy - NBI 180 193 193 0
Oman 5 7 7
Peru 36 85 85
Poland 220 325 325
Qatar 0 0 0
Romania 265 221 221
Russia 0 14 14
Turkey 94 84 84
USA 60 83 83 5
Venezuela 48 36 36
2581 2781 2781 64 21 2 4 6
8.5.19.1 Exchange
In 2013 we completed the centralization of all email systems of our controlled companies to the
Corporate data center10.
In October 2015 we completed the migration of all mailboxes (around 3.200) to Microsoft
Office365.
In order to simplify the management of Corporate user profiles and all related mailboxes, we defined
the following structures:
10
In 2016, there are almost 3.500 active mailboxes on our Corporate email system.

@sartoritecnologie.it
@metrocspa.com
@groupeteq.com
@btctunnel.com
@sirjoscpa.com
@3esystem.it
@astaldi.com
@nbispa.com
@cosat.eu
@scl-cjv.cl
Amministratore IT Based on
Bendouha Zouheir Algeria Algeria
Alcrow W. Canada Muskrat Falls (Canada)
Fernandez E. Canada Canada - Montreal CA
Hernandez Heber Chile Chile
Riquelme Carlos Chile Chile
Faviere Giandomenico Italy Italy All All All
Boraggini Alessandro Italy All All All
Cacciotti Claudio Italy Italy
Cretaio Claudio Italy All All All
Remigio Andrea Italy All All All
Ricciardi Rito Italy All All All
Sorrenti Alessandro Italy All All All
Contreras Miguel Peru Peru
Biczyk Hubert Polond Poland
Danciuc Marius Romania Romania
Morales Ivan Salvador Center-America
Yasar CULHAOGLU Turkey Turkey
Colby Richards USA USA
8.5.19.2 Sharepoint
In October 2015, we started a project for migrating all on-premis sites to the Cloud.
8.5.19.3 OneDrive for Business

Some users are currently using Onedrive For business. Based on the results of this test, we are
deciding whether to extend the use of it to all our users.
8.5.19.4 Skype
We are currently using Skype for handling the online presence, instant messages and VOIP phone
conversation.
In spite of some technical limits, we are evaluating the migration of Skype Consumer to Skype For
Business in Office365.
8.5.20 IT dedicated Software
8.5.20.1 Server Virtualization (VmWare)

Astaldi has introduced VmWare in 2003 in order to consolidate a large number of physical servers.
Currently, around eighty virtual servers are running on only six phisical ones.
In order to minimize the possible impact of any down-time, we have acquired the Production service
level.
A list of all servers installed in the Corporate Data Center is available in paragraph 13.2 on page 41.

8.5.20.2 Backup and Restore

In 2013, we introduced the EMC2-Data Domain technology for creating a daily backup of all data.
On a weekly, monthly and yearly basis, we also produce a backup of all data on LTO units using
the Symantec Backup Exec suite.
Weekly, a copy of the LTO units is stored in a secondary site (Via Agrigento).
All related processes are covered by a specific SOP (see paragraph 6 on page 8 for more
information).
8.5.20.3 Web Security and Content Filtering

All Internet Italian accesses are managed by Websense in order to:
 Improve Web security (e.g., spyware, mobile malicious code, phishing, pharming);
 Manage a strong Web Content Filtering scheme.
The Master Database Websense categorize all internet sites and protocols allowing us to create and
maintaining an IT Policy.
The Websense Security Gateway Anyware has been implemented in the Corporate Environment
and includes the following functionalities:
 Categorization of all Internet Sites and Web 2 Applications;
 Content Analysis of encrypted traffic (https);
 Profiling of user profiles;
 Active Security Module;
 Web Anti-Virus onboard;
 Real Time Security Scanning onboard;
 Port Agnostic Monitoring - Websense Application Control;
 SSL Inspection;
 Analysis of Instant Messaging Attachment;
 Bandwidth Optimizer;
 Real Time Monitor;
 Delegated Administration;
 Content Gateway Module;
 TrueWeb Data Leakage Prevention.
8.6 Data Flows across business applications
Appendix E shows all data flows among Corporate Systems.
The following figure shows all data interactions between all implemented systems11:
11
Systems in the clouds are represented in yellow

Figura 9: Data flow among Corporate IT Systems
9 IT VENDOR
9.1 Vendor Matrix

The following picture shows the position of each main IT Vendors working with the Corporate IT
department:

High
Dell Microsoft
Total IT yearly Cost
Infor
Medium
Vodafone
Ricoh Max-Italia
Fastweb Piteco
Cisco Talentia
Travelmatic Qlik Tagetik
Symantec Gartner
Oracle
Low
Low Medium High

Business Value
10 IT STANDARDS
10.1 Hardware and Software

IT standards are needed in order to:
 Improve the use of the IS;
 Streamline the access to Corporate data;
 Optimize business processes.
The IT standards have to be used by everybody. Non Standards Systems can only be used whether
they have been introduced in Astaldi before the first definition of the IT standards.
Appendix F lists all Corporate IT standards.
10.2 Format of files

Here are the main formats used within the Group:
File Extension Class Software
.mpeg video All video players

File Extension Class Software

.mpg video All video players
.avi video All video players
.pst Archive of emails Microsoft Outlook
.mp3 Audio Any audio Players
.mdb data base Microsoft Access
.accdb data base Microsoft Access
.pdf Mobile documents Adobe Acrobat and Adobe Acrobat Reader
.doc Word Processing Microsoft Word
.docx Word Processing Microsoft Word
.txt Word Processing Any Word processor
.zip Compression Compression software
.rar Compression Compression software
.xls Spreadsheet Microsoft Excel
.xlsx Spreadsheet Microsoft Excel
.mpp Planning Project Management
.mpx Planning Project Management
.bmp Image and Pictures Any Image Processing software
.jpeg (Ris. Min. 1024x768) Image and Pictures Any Image Processing software
.jpg (Ris. Min. 1024x768) Image and Pictures Any Image Processing software
.htm Web page Web Browser
.ppt Presentation Microsoft PowerPoint
.pptx Presentation Microsoft PowerPoint
.ppsx Presentation Microsoft PowerPoint
11 IT SUPPORT AND TRAINING
11.1.1 Introduction
Considering the role of the IT, it is clear that the IT support has to be efficient and effective.
The aim of this service is to:
 Minimize the number of IT issues that can reduce the effectiveness of our users;
 Resolve as soon as possible issues related to Hardware, Software and lines.
It is important to note that:

 Hardware maintenance is directly covered by the producer;
 An IT specialist has been hired by all main projects around the world.
11.1.2 Manutenzione Apparecchiature ed Help Desk

The Corporate IS departement is providing assistance using a Centralised, Web Service Desk
System based on Landesk technology.
The Corporate Service Desk is committed in solving users’ issues as soon as possible.
Here is the basic flow diagram of the Service Desk:

Click here to open the Service Desk manual.
11.2 IT Training
Considering the huge number of IT services, users and geographical locations, IT training is one of
the most critical success factor.
Education and training are not only a profitable investment on the human component of the
company, but also an essential tool for professional development, especially when we introduce new
technologies or reengineer our processes.
Training allows us to update employees’ knowledge both from a technical and methodological
point-of-view.
Training programs should also include a training-on-the-job activity in order to consolidate the
concepts.
12 IS PROJECTS
12.1 IS projects for 2014

Here is the list of the main internal projects for 2014:
 Reengineering of the Corporate Intranet e Project Content Management Systems;
 Move of all Metro-C IT systems to Astaldi (full outsourcing);

 Upgrade of Talentia to the new version and reengineering of the Work Force Planning
and Performance Management processes;
 Roll-out of Talentia to Romania;
 Roll-out of the Enterprise Asset Management to Canada;
 Implementation of the Landesk Service Manager Suite to the Group for manaing all IT
requests;
 Electronic invoicing System for the main italian counterparts;
 Roll-out of Piteco to USA, Canada and Poland;
 Implementation of the new firewall systems (Palo-Alto) for improving IT security of the
Corporate data-center.

Here is the list of the main internal projects for 2015:
 Feasibility Analysis for a possible migration of the ERP system;
 Migration of the Corporate Performance Management and Enterprise Risk Management
(Tagetik) to the new version at Group level;
 Roll-out of Piteco (Treasury System) to Chile, Peru and Turkey;
 Automatization of Bank transfer with the Swift Technology;
 First introduction of the Business Intelligence technology in the Corporate Financial
Department;
 Reengineering of the Recruitment process with Talentia;
 Roll-out of Talentia to Russia;
 Outsourcing of the Corporate Payroll for all italian employees;
 Roll-out of the Enterprise Asset Management System (EAM) to Poland, USA and Chile;
 First reengineering of the PAC (Programma Di Approvvigionamenti Commessa) in Romania
with Baan;
 Roll-out of the Enterprise Asset Management System to the main Italian legal entities in order
to extend it to the administrative process;
 Possible extension of the Enterprise Asset Management System to NBI, Metro-C e Veneta
Sanitaria;
 Migration of several systems (Mail, e-Collaboration and Content Management) to the Microsoft
Cloud (Office365);
 Evaluation of the Skype for Business in order to improve the collaboration across countries and
companies;
 Migration of the current Corporate PABX to Cisco and possible use of it to all new Italian
projects;
 Reengineering of the Corporate Internet Site (www.astaldi.com)
 Reengineering of all Audits performed by the SIA department with a new IT system (i.e., Mega);
 Introduction of the BIM (Building Information Modelling) paradigm in the Group;
 Final publication of all Corporate IT services to Internet;
 Go live of the IT Disaster Recovery Plan with a secondary datacenter in Milan.


Here is the list of the main IS projects for 2016:
 Implementatoin of a worldwide Job-Evaluation structure for Managers and Directors;
 Roll-out of Talentia in North America (USA e Canada);
 Self-service in Talentia;
 Forward of all Italian travel details to the Foreign Public Italian Governement (Dove siamo nel
mondo)
 Reengineering of the Astaldi’s Internet site (www.astaldi.com);
 Review of all Corporate Committee;
 Review of all PC standards and renoval of more than 200 computers at the Headquarters;
 First implementation of a Business Intelligence technology (Qlik) for the Finance department;
 Roll-out of Piteco and Swift in several countries (Chile, Peru, Turkey, Panama, Canada and
USA);
 Collaborative Disclousure Management in Tagetik;
 Digitalisation of the PEC process in Italia;
 Digitalisation of the Management of In/Out at Headquarters;
 Outsourcing of Metro-C data-center in Astaldi;
 New development in the BIM (Building Information Modelling) area;
 Finalisation of the Project Strategy for the evolution of the Group’s Information System;
 Implementation of a new Disaster Recovery Plan with the creation of a secondary data-center in
Milan.

13 APPENDIX
13.1 Appendix A: Glossary

Here is the list of all abbreviations used in this document:
ACL Access Control List
AD Active Directory
ATI: temporary consortium
BR: Business Requirements
BYOD: Bring Your Own Device
CAD: Computer Aided Design
CAE: Computer Aided Engineering
CV Curriculum Vitae
DGAF: General Manager Administration and Finance
DG General Manager
EAM: Enterprise Asset Management
ECM: Enterprise Content Management
ERP: Enterprise Resource Planning
HW: Hardware
ICT Information & Communication Technology
IP Internet Protocol
IRPEF: Personal Income Tax
IS: Information System
ISOD: Information System and Organizational Department
IT Information Technology
LAN Local Area Network
MPLS: Multi Protocol Label Switch
PABX Private Automatic Branch Exchange
PC Personal Computer
PCA: Project Cost Account
PSTN Public Switched Telephone Network
RDA: Purchase Request
SI: Information System
SAL Building work state of progress
SSO: Single-Sign-On;
SW: Software
TFR: Severance Pay
UPS Uninterruptible Power Supply
VLAN Virtual Local Area Network
VOIP Voice Over IP
VPN Virtual Private Network
WAN Wide Area Network
WBS: Work Breakdown Structure
WP: Work Package;

13.2 Appendix B: List of all Servers installed in the Corporate info-center

Click here to see the list of all Servers.
Click here to see the list of all SQL server.

13.3 Appendix D: List of Corporate Systems by country
Disaster Recovery
COUNTRY WHERE THE SOFTWARE IS IN USE
On Internet
Active Dir.
Owner
SYSTEMS
Venezuela
Nicaragua
Honduras
Costarica
Romania
Salvador
s. Arabia
Bulgaria
Canada
Poland
Algeria
Turkey
Bolivia
Russia
Oman
Qatar
Chile
Peru
Italy
EAU
USA
Act. Direct. C D D D Si AS Si
Antivirus C Si AS
AstaSW C C C C C C C C C C C C C C C C C C C C C Si GM Si
Baan C C C C C C C C C C C C C C C Si SD Si https
Bloomberg O Si AR Si
BravoSol. O Si AR Si
Talentia 2012 2016 2013 C 2013 2013 2014 2015 2014 2016 Si MQ Si https
G.Ledger D D D D D D C D D D MQ
eRoom C C C C C C C C C C C C C D C C C C C C Si RC Si http
E.P.Prot. C AR
File Sys D D D D D D D D D D D D D D D D D D D D Si AS Si
FinCad S AR
Gemms C CA
Warehousing D D D D D D C D D RC
EAM (tecn.) 2014 2014 2014 2015 2013 Si MQ Si https
EAM (amm.) 2014 Si MQ Si https
Fixex Asset D D D D D D D D D C D D D D D D D D D D Si MQ
Legal Mngt C MQ
Corp.Bank. S * CA Si
Ipsoa C Si CA Si
Lan-Desk C C AR
Networking D D D D D D D D D D D D D D D D D D D D Si AS
Piteco 2013 2014 2016 C 2016 2014 2016 2017 2016 2014 Si CA Si https
Swift - 2015 2016 2016 2016 2016 2017 2016 2015 Si CA Si https
Corp. Mail O O O O O O O O O O O O O O O O O O O O O Si AS Si Si
Primavera S S S S S S CS S S S S S S S MB http
MS-Project S S S S S S S S S MB
Primus S D SC
Linea 32 S S SC
STR Vision C D Si SC Si https
Reuters O O AR Si
Att.tracking D D D D D D D D D C D D D D D D D D D D Si MQ
Web site O GM Si
Zucchetti O CA Si
AutoDesk Si SC W
Sharepoint C C C C C Si GM Si Si
Tagetik C C C C C C C C C C C C C C C C C C C C Si CA Si https
Travelmatic O CA Si
Tylos S MB
Web-Sense C AS
Here is the meaning of each letter used in the above table:

 Columns related to the countries:
o S=Installed on PC
o O=Installed in external (outsourcing) data centers
o D=Installed on local server
o C=Installed in the Corporate Data Center
o 1-9: Impl. year
 Owner column: initial of the firstname and surname of the Software Owner (e.g., CA=Claudio
Aggravio)
13.4 Appendix E: Data-flows

The following table highlights the information flows among the IT systems:

# FROM TO DESCRIPTION FREQUENCY

1 Baan-Distr. Baan-Fin. Warehousing Receipts
2 Baan-Distr. Baan-Proj. Purchase orders and corrections;
Services Receipts
3 Baan-Fin. Baan-Proj. Costs and revenues without P.O.;
Price differences generated by services P.O.;
4 Baan-Fin. Tagetik CPM Balance sheet, Profit and loss statement and Statement of
cash flow by project.
5 Baan-Fin. Piteco-Evo - Purchase Invoices to be paid: manual flow started -
manually by users.
- Master datas and Rates of exchanges: daily automatic
flow.
6 Portale Ril. Presenze list of the approved absences
7 Portale Talentia Allocation of employees to each projects
8 Baan-Proj. Baan-Fin. Accounting data (receipt of services, rentals and materials,
receipts of subcontracts)
9 Baan-Proj. Primavera List of activities, planning and progress of activities;
information of revenues amounts (not yet implemented)
10 Baan-Distr.. Baan-Proj. Warehousing and Service Receipts;
Warehousing Orders;
Processing inventory variances
11 Gemms Ril. Presenze Badge transactions (punch in/out)
12 TLQ Piteco-Evo Bank transactions flow done on company's bank accounts
13 Zucchetti Baan-Fin. Accounting transactions related to payroll. Generated
montly by HR dept.
14 Zucchetti Talentia Personal data and salaries.
15 Piteco-CBC TLQ List of bank transfers

16 Ril. Presenze Zucchetti Unique file containing :
- daily presence of each employee
- monthly data for each competence code
17 Piteco-Evo Baan-Fin. Bank Transactions flow related to payments, collections
and journal transactions.
18 Primavera Baan-Proj. List of activities, planning and progress of activities;
information of revenues amounts (not yet implemented)
19 Baan-Proj. Tagetik Actual results by cost/revenue nature (cumulative/year).
Annual budget.
20 Baan Excel Creation of formatted excel reports with diagrams and
charts issue
21 Baan PDF Creation of formatted PDF reports
22 Zucchetti eRoom Payslips (it is used by MetroC only)
23 Talentia Portale Several data flow related to employees

24 Baan Portale Several data flow
25 www.uic.it Baan Daily Rate of Exchanges between all world currencies and
Euro and USD
26 Cont.Gen. $ Tagetik CPM Assestment transactions for closing accounting (files are
added to the Baan ones)
Balance sheet, Profit and loss statement for companies not
yet operating in Baan.
27 Baan-Fin. eRoom Purchase invoices ref and Business Partners ref.
28 Piteco-Evo Piteco-CBC Bank transfer to be approve.
29 Tagetik CPM Talentia Total number of HR by project and job-title
30 SAL eRoom

# FROM TO DESCRIPTION FREQUENCY
31 SAL Bonds Link between subcontracts and issued Bonds

32 Finance SAL Management of revenues invoices associated to the
certified Statement of works (SAL)
33 Zucchetti Baan-Proj. Import of data sheets regarding: timesheets, costs by
employee and by cost center
34 Budget and SIL Automatic link between the statement of works (SIL) and
Actual the effective progress of the Project, to be compared with
the budget
35 Bloomberg Fincad Several financial information to be used by Fincad in order
to evaluate the risk for fluctuation in exchange rates and
interest rates.
36 Cont. Gen. $ RUA Costs and Revenues by project (for companies not yet
active in Baan)
37 RUA Tagetik Costs and Revenues by project (for companies not yet
active in Baan)
38 Powerbuilder Baan Import of item master data, product lines, cost
components, settings for subcontracts
38 P.Ge.Mac Baan-Fin. No more in use
39 Baan-Fin. Postecom.it Documents to be archived
40 Cont.Gen. $ Postecom.it Documents to be archived
41 Baan Ipsoa Data flow for the VAT management.
42 Gest.Legale Talentia Atributes of each legal entities (retribution for the board,
etc.)
43 Baan-Proj. MS-Project No more in use
44 MS-Project Baan-Proj. No more in use
45 Baan Finance EAM Flow related to Purchase Invoices and depreciation of
fixed assets
46 Baan-Distr. EAM Real time updates of Item and BP master data, Requisition,
Purchase Order and Receipts.
47 EAM Baan Finance Flow related to fixed asset transfer and disposal.
48 EAM Baan-Distr. Real time updates of issues relevant to Work Orders
(maintenance and refuelling)
49 Vision Baan Project Tenders budget
50 BravoSolution Baan-Distr. To de defined
51 Baan-Distr. BravoSolution To be defined
52 Talentia Travelmatic Data for each employee (job-title, reporting to, Cost
Center, etc.)
53 Travelmatic Sharepoint List of the performed business trips
54 Zucchetti Sharepoint Payslips (it is used by all Italian company except MetroC)
55 Zucchetti Piteco-Evo Monthly payments of all italian payroll

56 Talentia Baan Project No more in use
57 Internet Talentia Real time flow for all CV fed by potential employees
58 Piteco-Evo Tagetik CPM Monthly flow with statement of cash flow.
59 Ipsoa Piteco-Evo Periodic flow related to all taxes payments.
60 Excel Baan Import of excel data to Baan (example: budget, Bill of
Quantities, Statement of works - SIL-SAL)
A fully detailed list is also available here:

CLICK

13.5 Appendix F: List of IT Standards
13.5.1 Hardware
In the following paragraphs all main HW standards have been listed.
13.5.1.1 Server
Device Brand Model Note
Server Dell n/a In case several servers have to be installed, a rack
version should be chosen.
This equipment, like all other IT infrastructure
products (e.g. Switch, Hub, Router, Firewall, etc.),
has to be covered by an UPS.
13.5.1.2 Networking
Switch HP A POE version should be used in needed.
Router Cisco n/a The model will depend on the size of the site and
funcionalities to be implemented
Firewall Palo Alto 3020 To be selected only for very large Data-Center
(more than 500 users).
Firewall Watchguard XTM xxx To be selected for all other geographical sites.
The following functionalities should be activated:
 Webblocking
 Back-up delle linee dati
 Load-balancing
 Traffic analyser
 Lan-to-Lan VPN
 Anti-Virus perimetrale e Anti-Spam
13.5.1.3 Personal Computer

Desktop CAD Dell OptiPlex 990 Lenovo and HP can also be used and should cost
around 1.000 euro including:
 Microsoft Windows
 Microsoft Office
 3 or 4 year, next-business-day warranty.
Desktop generico Dell OptiPlex 990 SF Same as the previous item with a total cost of around
800 euro.
Portatile CAD Dell Precision M6800 Same as the previous item with a total cost of around
1.800 euro.
Docking station are not allowed.
Portatile leggero Dell E7740 Same as the previous item with a total cost of around
1.200 euro.
Tablet Tablets cannot be purchased. A BYOD approach is
allowed.
13.5.1.4 Printers and Plotters

Printer B/W A4 Ricoh The model depends on the required volumes and
functinalities
Printer B/W A3 Ricoh Same as the previous point
Printer Color A4 Ricoh Same as the previous point
Printer Color A3 Ricoh Same as the previous point


Multifunction unit Ricoh Same as the previous point
Plotter HP Same as the previous point
13.5.1.5 PABX and telephone set

PABX Cisco n/a Depending on the size of the site and funcionalities
to be implemented.
For example, in the Headquarters we have
implemented the Cisco BE6000.
Phone device VOIP Cisco n/a The following models are generally used:
- Cisco 3905 (Employees)
- Cisco 7821 (Junior Manager)
- Cisco 8841 or 8851 (Manager and Secretary)
13.5.1.6 Cellular phone

Smart-Phone Apple IPhone Managers
Samsung Note / Sx
Smart-Phone Samsung Galaxy Advanced Employees
Tablet Tablets cannot be purchased. A BYOD approach is
allowed.
13.5.2 Software
13.5.2.1 Operating System (SO)

Typlogy Brand Name of Product Note
Personal Computer Microsoft Windows 10 Windows 7 and 8.1 are also allowed
Server Microsoft Windows 2012 Windows 2008 is also allowed.
The license should be acquired using the Corporate
Enterprise agreement signed between the Astaldi’s
headquarters and Microsoft in June 2015.
Altri device Samsung n/a  Android for Samsung
Apple  iOS for Apple
13.5.2.2 Business Applications

E.R.P. Infor BaaN-ERP Here are the main modules:
 Finance
 Purchasing & Warehouse
 Project
Payroll Zucchetti IT and administrative outsourcing for all Italian
based employees
HR Management Talentia Talentia Web based solution
Consolidation Tagetik Tagetik CPM Statutory Consolidation
Management Consolidation
Treasury Piteco Piteco-Evolution
Electronic payments Piteco Piteco CBC Used for approaving all electronic payments
Financial Analysis Fincad Analytics Suite for Excel Add-on
Excel
Management of Contur Travelmatic
missions and Expense
Reports


Time Sheet Astaldi Rilevazione presenze
Legal Office Astaldi
Management
General Ledger Astaldi $ It is only used by few companies that have not been
migrated to Baan.
Warehousing Astaldi It is only used by few companies that have not been
migrated to Baan.
Cost Analysis of Astaldi RUA
Projects
Asset Management Infor Enterprise Asset
Management (EAM)
Risk Management Tagetik Tagetik R.M.
Asset Management Astaldi P.Ge.Mac We are replacing it, country-by-country, with Infor
EAM
Badge Management Eltime Gemms It is used by several geographical sites in Italy
Quantity Surverys Astaldi Ge.Com
Management
Subcontracting Astaldi Subcontracting It has been internally developed into Baan
Service Desk Landesk Service Desk
Expediting Astaldi Gestione Trasporti
Info-Provider Bloomberg Anywhere It is used by the Treasury Department only
Info-Provider Reuters Eikon
Fiscal Declaration Ipsoa Suite Ipsoa Fiscal declarations
Management of Outsourcer Bravo-Solution It also include the Vendor Management

Requests for Proposal
Expediting Outsourcer Expediting
13.5.2.3 PC related software

Office Microsoft Office 2016 Home & Used by 90% of the internal population.
Business Whenever possible, we strongly suggest to purchase
it using the OEM Microsoft license.
Office Microsoft Office 2016 Used by less than 10% of the internal population.
Professional Plus Whenever possible, we strongly suggest to purchase
it using the OEM Microsoft license or using the
Office365-E3 Plan
Mail Service Microsoft Exchange Running in the cloud on Microsoft Office365
Mail Microsoft Outlook Mailbox can also be accessed using:
- Webmail (www.astaldi.com)
- Tablets
- Smartphones
Syncronous Microsoft Skype Instant message, online presence, VOIP phone calls,
comunications video calls, transfer of files.
We are evaluating the migration to Skype For
Business.
PDF Adobe Acrobat PDF management
File Compression Open-Source 7-zip Management of compressed files
Corporate Banking Quercia Software TLQ
Flow Chart Corel Corporation iGrafx FlowChart

13.5.2.4 Technical Business Applications

CAD Autodesk Autocad Cad
BIM Autodesk NavisWorks Used in the frame of the BIM initiative
Revit
Civil-3D
Quantity Surveys STR Linea-32 or Planet
Quantity Surveys Acca Software Primus To be used in place of Linea-32 when required by
the customer
Bidding STR Vision In 2013 we completed the Migration from PV2 to
Vision.
Planning Microsoft Project
Planning Oracle Primavera
Planning lineare Tylos
13.5.2.5 IT Security
Anti-Virus for PC Symantec Protection Suite Antivirus, Anti-Spyware e Anti-adware
Enterprise Personal Firewall
Edition
Anti-Spam Microsoft Anti-Spam We are using the technology embedded in the
Exchange service provided by the Office365
environment.
Log Administators Symantec Security Information Log of all IT Administrators activities
Manager
Backup e Restore Symantec Backup Exec
Web Filtering Websense Web Security Gateway This systems is currently used in Italy only. In some
Anywhere other countries a simplified system has been
implemented.
13.5.2.6 EDMS and e-collaboration

Enterprise Content Microsoft Sharepoint
Management
e-Collaboration Microsoft Sharepoint This system has replaced eRoom
Digital Signature Actalis Actalis System based on USB keys
Portal Builder Microsoft Sharepoint
13.5.2.7 Data Base Management Systems

DBMS Microsoft SQL SQL 2008 is also allowed.
The license should be acquired using the Corporate
Enterprise agreement signed between the Astaldi’s
headquarters and Microsoft in June 2015.
DBMS Sybase Sybase We are gradually replacing it with MS-SQL
13.5.2.8 Tools
PC management Landesk Landesk Management  HW and SW Inventory
Suite  Remote Control
 Software Distribution
 Patch management


Internet Web Server Microsoft ISS
Proxy e Cache Microsoft ISA
Server Virtualization EMC2 VmWare
13.5.2.9 Software Development

Business Qlik Qlik Sense The technology has been acquired in 2016 and will
Intellingence be extended to our Group
Business Business Object Crystal Enterprise Just used by Talentia
Intellingence
SW Developement Microsoft Vari
SW Developement Sybase PowerBuilder
SW Developement SSA Global BaaN-ERP 4GL

13.6 Appendix G: PABX network diagrams

The following pictures show the PABX network diagram in Italy.


Description of The IS PDF

Загружено:

Сведения о документе

Исходное описание:

Оригинальное название

Авторское право

Доступные форматы

Поделиться этим документом

Поделиться или встроить документ

Параметры публикации

Этот документ был вам полезен?

Это неприемлемый материал?

Авторское право:

Доступные форматы

Description of The IS PDF

Загружено:

Авторское право:

Доступные форматы

Group Astaldi Information System Department

DESCRIPTION OF THE INFORMATION SYSTEM (draft)

Version: 0.32 (Draft) Page 1 of 51 24 March 2017

2 MISSION OF THE ISOD DEPARTMENT 5

3 JOB DESCRIPTION OF THE ISOD 5

4 THE VALUE CHAIN 6

5 THE “PENTAGON” MODEL 7

6 POLICY AND SOP 8

8 THE INFORMATION SYSTEM 11

Version: 0.32 (Draft) Page 2 of 51 24 March 2017

8.4.2.3 Old implementation 17

Version: 0.32 (Draft) Page 3 of 51 24 March 2017

8.6 DATA FLOWS ACROSS BUSINESS APPLICATIONS 33

11 IT SUPPORT AND TRAINING 36

Version: 0.32 (Draft) Page 4 of 51 24 March 2017

2 MISSION OF THE ISOD DEPARTMENT

3 JOB DESCRIPTION OF THE ISOD

3.1 Information System department

Version: 0.32 (Draft) Page 5 of 51 24 March 2017

 Manage the IT Service Desk;

3.2 Organizational department

4 THE VALUE CHAIN

Version: 0.32 (Draft) Page 6 of 51 24 March 2017

Figure 1: The Chain Value

5 THE “PENTAGON” MODEL

Version: 0.32 (Draft) Page 7 of 51 24 March 2017

 2007: Anti-malware (Symantec End-Point-Protection);

6 POLICY AND SOP

Version: 0.32 (Draft) Page 8 of 51 24 March 2017

7.2 Organization Chart

C. Cretaio (Max Italia, 30%) C. Pieragostini G. Menna (Romana Inf.) M. Contreras

C. Cacciotti R. Cernosick S. Caputo (Romana Inf.) C. Riquelme

R. Ricciardi M. Bianchi Turnaoglu Semih

S. Caramazza Hubert Bigzik

Figure 3: Organisation Chart of the ISOD

Version: 0.32 (Draft) Page 9 of 51 24 March 2017

7.3 Group CIO

7.4 IT Project Leader

Version: 0.32 (Draft) Page 10 of 51 24 March 2017

7.5 IT Business Analyst

7.6 Software Developer

7.7 Service Desk

8 THE INFORMATION SYSTEM

Version: 0.32 (Draft) Page 11 of 51 24 March 2017

8.1.1 General guidelines

8.1.1.1 First level: Transport of information

8.1.1.2 Second Level: Interoperability

8.1.1.3 Third Level: Cooperation among applications

8.1.2 Policy for the management of data security

8.1.3 Microsoft Active Directory (AD)

8.1.4 Physical security of Corporate Data-center

Version: 0.32 (Draft) Page 12 of 51 24 March 2017

8.2.2 Power Supply

Version: 0.32 (Draft) Page 13 of 51 24 March 2017

8.2.3 Air Conditioning system

8.2.4 Fire System

8.2.5 Security System

8.2.6 Lightning Protection System

8.2.7 Disaster Recovery

Version: 0.32 (Draft) Page 14 of 51 24 March 2017

8.3.1 General description

Figura 5: AstaNet: Wide Area Network