Financial Company Successfully Secures Its Digital Banking Innovation with AWS and CDT

Posted by taufik

November 18, 2024

Article Banner Security 01

About 

A financial company with a strong commitment to digital banking, it has led the way in offering digital services that complement its branch network. With a focus on innovation, nearly all of its transactions are now conducted through digital channels, including mobile banking, internet banking, corporate banking systems (CBS), and ATMs. The organization strives to provide seamless digital banking experiences for both individuals and businesses. 

The Challenges 

The digital transformation journey of this organization accelerated in 2021 with the launch of its Bank app, a strategic initiative in partnership with one of Financial Corporation. This venture presented several key challenges that needed to be overcome to achieve its digital ambitions effectively. 

We identified the need to reinforce three crucial pillars: people – by promoting security awareness; processes – by updating internal policies; and technology – by investing in advanced cybersecurity and scalable cloud solutions” said the Head of IT Governance, Risk, Infosec, and Architecture. 

As digital readiness progressed, the organization recognized the importance of robust cybersecurity to protect sensitive customer data. Additionally, by 2022, cloud technology was identified as essential for supporting a flexible and scalable security framework, offering more efficient deployment compared to traditional hardware. 

CDT Proposed Solutions 

Having previously worked with CDT, the organization implemented AWS solutions that aligned with its vision for a digitally resilient infrastructure. CDT addressed the challenges with a suite of AWS solutions designed to enhance security, scalability, and operational efficiency. 

A key component of the solution was the deployment of a Web Application Firewall (WAF) for corporate applications, offering strong protection against the risk of a malicious actor discovering vulnerable applications, filtering out viewers trying to hide their identity, blocking sources associated with bots or other threats, and providing protection against exploitation of a wide range of vulnerabilities. These rules effectively mitigated risks associated with threats identified in the Open Web Application Security Project (OWASP) Top 10, ensuring that the application environment was successfully protected from cyberattacks. 

Regarding protection against unauthorized access, CDT implemented AWS IAM Identity Center for centralized access controls to ensure that only authorized personnel have access to sensitive data and resources across AWS environments. 

CDT also implemented Amazon GuardDuty, a threat detection service that continuously monitors the AWS environment for suspicious activity. Leveraging machine learning, anomaly detection, and malware analysis, GuardDuty has ensured a secure, resilient digital environment. 

To further strengthen governance, CDT deployed AWS Security Hub, providing a centralized platform to manage the AWS environment with detective controls. This setup enabled monitoring of compliance and security across its multi-account structure, supporting secure, compliant growth on AWS. 

Results and Benefits 

The partnership with CDT and the deployment of AWS solutions delivered transformative outcomes. The IT team gained enhanced cybersecurity knowledge, enabling them to maintain a more secure digital environment confidently. 

The shift to AWS infrastructure also accelerated application development timelines by approximately 50%, allowing the organization to launch new services and features faster and respond more effectively to customer demand. “Previously, developing an application with conventional, on-premises methods could take up to six months. With AWS, we’ve reduced development time to just two to three months,” explained the IT department head. 

Furthermore, CDT’s initial security assessments and ongoing AWS setup helped the organization meet stringent cybersecurity standards, further enhancing resilience. Through this digital transformation, the company has strengthened its position in the competitive banking sector, delivering secure, agile, and innovative banking services with enhanced digital capabilities. 

whatsapp icon.png
Start a Conversation

Privacy & Policy

PT Central Data Technology (“CDT” or “us”) is strongly committed to ensuring that your privacy is protected as utmost importance to us. https://centraldatatech.com/ , we shall govern your use of this website, including all pages within this website (collectively referred to herein below as this “Website”), we want to contribute to providing a safe and secure environment for visitors.

The following are terms of privacy policy (“Privacy Policy”) between you (“you” or “your”) and CDT. By accessing the website, you acknowledge that you have read, understood and agree to be bound by this Privacy Policy

Use of The Subscription Service by CDT and Our Customers

When you request information from CDT and supply information that personally identifies you or allows us to contact you, you agree to disclose that information with us. CDT may disclose such information for marketing, promotional and activity only for the purpose of CDT and the Website.

Collecting Information

You are free to explore the Website without providing any personal information about yourself. When you visit the Website or register for the subscription service, we provide some navigational information for you to fill out your personal information to access some content we offered.

CDT may collect your personal data such as your name, email address, company name, phone number and other information about yourself or your business. We are collecting your data in some ways, online and offline. CDT collects your data online using features of social media, email marketing, website, and cookies technology. We may collect your data offline in events like conference, gathering, workshop, etc. However, we will not use or disclose those informations with third party or send unsolicited email to any of the addresses we collect, without your express permission. We ensure that your personal identities will only be used in accordance with this Privacy Policy.

How CDT Use the Collected Information

CDT use the information that is collected only in compliance with this privacy policy. Customers who subscribe to our subscription services are obligated through our agreements with them to comply with this Privacy Policy.

In addition to the uses of your information, we may use your personal information to:

  • Improve your browsing experience by personalizing the websites and to improve the subscription services.
  • Send information about CDT.
  • Promote our services to you and share promotional and informational content with you in accordance with your communication preferences.
  • Send information to you regarding changes to our customers’ terms of service, Privacy Policy (including the cookie policy), or other legal agreements

Cookies Technology

Cookies are small pieces of data that the site transfers to the user’s computer hard drive when the user visits the website. Cookies can record your preferences when visiting a particular site and give the advantage of identifying the interest of our visitor for statistical analysis of our site. This information can enable us to improve the content, modifying and making our site more user friendly.

Cookies were used for some reasons such as technical reasons for our website to operate. Cookies also enable us to track and target the interest of our users to enhance the experience of our website and subscription service. This data is used to deliver customized content and promotions within the Helios to customers who have an interest on particular subjects.

You have the right to decide whether to accept or refuse cookies. You can edit your cookies preferences on browser setup. If you choose to refuse the cookies, you may still use our website though your access to some functionality and areas of our website may be restricted.

This Website may also display advertisements from third parties containing links to other websites of interest. Once you have used these links to leave our site, please note that we do not have any control over the website. CDT cannot be responsible for the protection and privacy of any information that you provide while visiting such websites and this Privacy Policy does not govern such websites.

Control Your Personal Data

CDT give control to you to manage your personal data. You can request access, correction, updates or deletion of your personal information. You may unsubscribe from our marketing activity by clicking unsubscribe us from the bottom of our email or contacting us directly to remove you from our subscription list.

We will keep your personal information accurate, and we allow you to correct or change your personal identifiable information through marketing@centraldatatech.com