figo Converts to Container Infrastructure for Speed, Efficiency and Scalability
GLEN KOSAKA Container Security Banking PCI Compliance Financial Services Kubernetes Leave a Comment
Building in Reliability to Meet Regulatory Demands
The German banking service provider figo is on a mission to reduce complexity and increase reliability and scalability across its infrastructure. To reach these goals, while also addressing the ongoing demands of banking and privacy regulations, figo is converting to a Kubernetes container-based infrastructure.
As figo says, “these measures ensure figo API’s future-readiness with regard to requirements for stability, security, scalability and performance, while at the same time, enabling greater flexibility with increasing use of the service”.
Critical to the success of this project is securing the new container-based infrastructure from malware and other malicious attacks, and meeting customer privacy and banking regulatory requirements such as the European-wide General Data Protection Regulation (GDPR), Federal Financial Supervisory Authority (BaFin) regulations, and PSD2, the European payment services directive.
The NeuVector Solution
After a thorough evaluation, and conferring with a leading IT- analyst firm, figo selected NeuVector as its container runtime security solution. NeuVector key benefits to figo include:
- Cloud-native architecture; proven Kubernetes experience
- Superb horizontal scaling capability
- Layer 7 container network visibility delivering observational capability across all container traffic, especially east-to-west
- Responsive to requests
“As the leading European banking service provider, security and the ability to meet regulatory demands is crucial to figo. To ensure the success of our container project, we knew we had to find a container network security solution that could meet our technical and regulatory needs. We found that solution with NeuVector’s unique combination of container network visibility, runtime security, scalability and proven Kubernetes expertise.”
Christian Hüning, System Architect. figo
About figo
Established in 2012, figo is Europe’s first banking service provider. Through its figo Banking Platform, figo is dedicated to making banking and payment services open and accessible for the development of new use cases.
The figo Environment
- Host: Container Linux
- Orchestration: Kubernetes, Linkerd 2, Cilium, Rook
- Monitoring: Prometheus, Grafana, ELK
- Image Registries: Gitlab, Artifactory Pro
- Development: Python, TypeScript, Go Language
- Security: NeuVector, HashiCorp Vault, HSM’s
Download this case study in PDF
Categories
- Container Security (75)
- Cloud Security (35)
- Docker Security (30)
- Kubernetes Security (26)
- Press Releases (21)
- Container Threats (18)
- Network Security (18)
- Articles (14)
- Kubernetes (13)
- Vulnerabilities (13)
- Container Networking (8)
- Container Firewall (7)
- Exploits (7)
- RedHat OpenShift (7)
- cloud-native security (7)
- AWS (6)
- Partnerships (6)
- Alerts (4)
- Ebooks + Guides (4)
- data loss prevention (4)
- security automation (4)
- service mesh (4)
- Cloud services (3)
- Compliance (3)
- Cyber Attacks (3)
- Kubernetes system (3)
- Microservices (3)
- NeuVector Product (3)
- Serverless (3)
- dlp (3)
- AWS ECS (2)
- CI/CD (2)
- CIS Benchmark (2)
- Customer Stories (2)
- Docker (2)
- Infrastructure as Code (2)
- Istio (2)
- Open Source (2)
- PCI Compliance (2)
- PCI-DSS (2)
- Slider Ebooks & Guides (2)
- Terraform (2)
- VMware (2)
- run-time (2)
- security mesh (2)
- shift left (2)
- waf (2)
- Alibaba (1)
- App Mesh (1)
- Backdoor (1)
- Banking (1)
- Black Duck Software (1)
- Docker Hub (1)
- Docker Networking (1)
- Docker container firewall (1)
- ECS (1)
- EKS (1)
- Events (1)
- Financial Services (1)
- GDPR (1)
- IBM Cloud (1)
- Internet of Things (1)
- JFrog (1)
- Jenkins (1)
- Knative (1)
- OpenShift (1)
- Secrets (1)
- VMware Photon (1)
- Virtual Patching (1)
- Webinar (1)
- admission control (1)
- application security (1)
- container risk score (1)
- cpu optimization (1)
- crypto (1)
- data breach (1)
- dpi (1)
- grafana (1)
- linkerd2 (1)
- micro-perimeter (1)
- monitoring (1)
- pci (1)
- prometheus (1)
- rancher (1)
- real-time containers (1)
- sdlc (1)
- sensitive data (1)