dark modedark modedark mode
light modelight modelight mode
What we do
chevronchevronchevron
Services
About us
chevronchevronchevron
Company
Who we are
Impact on clients, communities, and our people
Careers
Boost your career, boost global innovation
How we work
Discover our formula for your success
Partnerships
We team up with the top in tech to deliver top-tier results.
Discover more
globeglobeglobe
Looking for UK-specific content?
Visit UK website
What we do
Services
About us
Company
Who we are
Impact on clients, communities, and our people
Careers
Boost your career, boost global innovation
How we work
Discover our formula for your success
Partnerships
We team up with the top in tech to deliver top-tier results.
Discover more
dark modedark modedark mode
light modelight modelight mode
Light mode
Contact us
arrowarrowarrow

EBANQ: Banking on the future of payments

Discover client’s website
EBANQ_Hero
EBANQ_LogoEBANQ_LogoEBANQ_Logo
EBANQ is a white-label online banking application for payment providers, neobanks, asset management firms, and cryptocurrency exchanges. Managing over 40,000 active accounts across 80 different environments, the company handles 500,000 transfers and a million transactions every month.

Stats

13

comprehensive vulnerability report across 13 parameters

27

issues found and fixed

40

reduced operational costs by up to 40 percent

Project description

Though the entire business world is now in an arms race against increasingly sophisticated threats, the financial sector remains a particularly lucrative target for cyberattacks. As a leading digital banking platform, EBANQ processes vast amounts of sensitive and confidential data, so the company needed to fortify its security measures. Already working with Vention’s team, EBANQ knew we would be its key ally in reaching this goal.

First off, we performed a range of penetration tests to identify potential loopholes in the company’s web and mobile apps. Almost immediately, we moved on to a full-scale technical audit, giving EBANQ a 360-degree view of its overall security status.

Next, we integrated DevSecOps tools and OWASP dependency checks into the client’s CI/CD pipeline to enable real-time vulnerability detection. Once we had conducted an extensive analysis of the new infrastructure, our team developed a robust security roadmap to give EBANQ clear guidance on how to proactively respond to arising issues  — all in full compliance with PCI DSS and ISO 27001.

Additionally, we overhauled EBANQ's architecture, transitioning to a Kubernetes cluster, which optimized virtual machine usage and cut costs by 40 percent. We also implemented cost-effective architectural changes, such as replacing RabbitMQ with Amazon SQS and utilizing RDS and EC2 Reserved Instances, reducing cloud costs by 20 percent.

Finally, our team automated daily DevOps tasks using tools like Jenkins, Terraform, and Bash, significantly saving operational time by at least 50 percent. We also streamlined database security using Vault for secrets rotation in Kubernetes and ensured fair distribution of cluster costs among clients using Kubecost.

The result

Thanks to our unrivaled cybersecurity expertise, we completed the end-to-end audit in less than two months — a staggering pace for an undertaking of this scale. We also created an in-depth vulnerability report to prepare EBANQ against the most advanced cyber threats in the future.

Our efforts paid off for other projects, too: With our infrastructure recommendations in place, Vention’s development team could quickly migrate the platform to a modern Golang stack and microservice architecture, maximizing the system’s scalability and performance.

EBANQ_Mockup_2a

Tools & technologies

Cloud platforms and services:

AWS (Amazon Web Services) components like:

AWS EKS

AWS EC2

AWS S3

AWS RDS

AWS CloudWatch

AWS IAM

AWS Route53

AWS Backup

AWS Lightsail

AWS Load Balancer Controller

Amazon EBS CSI driver

Container orchestration and related tools:

Kubernetes

Docker

Kube Prometheus Stack

Calico

Helm

Kubecost

Kuberhealthy

Lens

Fluent Bit

Configuration management and automation:

Jenkins

Hashicorp Vault

Ansible

Makefile

The Vault Secrets Operator

Autoscaler

Programming languages:

Bash

Groovy

Web Server: Nginx

Miscellaneous:

Disaster Recovery

Secrets Rotation

Open Policy Agent

Kubecost

Kuberhealthy

Our work

Food & beverage

Freshly

arrowarrowarrow
Freshly_Hero

All cases

arrowarrowarrow

Contact us