Container Security

figo Converts to Container Infrastructure for Speed, Efficiency and Scalability

Building in Reliability to Meet Regulatory Demands

The German banking service provider figo is on a mission to reduce complexity and increase reliability and scalability across its infrastructure. To reach these goals, while also addressing the ongoing demands of banking and privacy regulations, figo is converting to a Kubernetes container-based infrastructure.

As figo says, “these measures ensure figo API’s future-readiness with regard to requirements for stability, security, scalability and performance, while at the same time, enabling greater flexibility with increasing use of the service”.

Critical to the success of this project is securing the new container-based infrastructure from malware and other malicious attacks, and meeting customer privacy and banking regulatory requirements such as the European-wide General Data Protection Regulation (GDPR), Federal Financial Supervisory Authority (BaFin) regulations, and PSD2, the European payment services directive.

The NeuVector Solution

After a thorough evaluation, and conferring with a leading IT- analyst firm, figo selected NeuVector as its container runtime security solution. NeuVector key benefits to figo include:

  • Cloud-native architecture; proven Kubernetes experience
  • Superb horizontal scaling capability
  • Layer 7 container network visibility delivering observational capability across all container traffic, especially east-to-west
  • Responsive to requests

“As the leading European banking service provider, security and the ability to meet regulatory demands is crucial to figo. To ensure the success of our container project, we knew we had to find a container network security solution that could meet our technical and regulatory needs. We found that solution with NeuVector’s unique combination of container network visibility, runtime security, scalability and proven Kubernetes expertise.”

Christian Hüning, System Architect. figo

About figo

Established in 2012, figo is Europe’s first banking service provider. Through its figo Banking Platform, figo is dedicated to making banking and payment services open and accessible for the development of new use cases.

The figo Environment

  • Host: Container Linux
  • Orchestration: Kubernetes, Linkerd 2, Cilium, Rook
  • Monitoring: Prometheus, Grafana, ELK
  • Image Registries: Gitlab, Artifactory Pro
  • Development: Python, TypeScript, Go Language
  • Security: NeuVector, HashiCorp Vault, HSM’s

 

Download this case study in PDF

About the Author

Glen is VP Marketing & Product Management at NeuVector.
Glen has over 20 years of experience in enterprise security, marketing SaaS, and infrastructure software. He has held executive management positions at Trend Micro, Provilla, Reactivity, Quantum and Rignite.

NeuVector, the leader in Container Network Security, delivers highly integrated, automated security for Kubernetes and OpenShift, and is the only next generation container firewall with packet-level interrogation and enforcement.