Apiture Integrates Data Security into SecOps with Open Raven
Customer Company Size
Mid-size Company
Region
- America
Country
- United States
Product
- Apiture Xpress
- Apiture Open
- Open Raven Data Security Platform
Tech Stack
- Amazon Web Services (AWS)
- S3
- Splunk
Implementation Scale
- Enterprise-wide Deployment
Impact Metrics
- Productivity Improvements
- Customer Satisfaction
- Digital Expertise
Technology Category
- Cybersecurity & Privacy - Cloud Security
- Infrastructure as a Service (IaaS) - Cloud Computing
Applicable Industries
- Finance & Insurance
Applicable Functions
- Business Operation
Use Cases
- Cybersecurity
Services
- Cybersecurity Services
- Cloud Planning, Design & Implementation Services
About The Customer
Apiture is a leading provider of digital banking solutions. It provides financial institutions with the integrations, capabilities, and resources that banks and credit unions have not had access to in the past. Offering two differentiated digital experience platforms, Apiture Xpress and Apiture Open, Apiture develops innovative solutions that can be used by financial institutions of any size. Apiture serves hundreds of financial institutions in the United States market. The company is headquartered in Wilmington, North Carolina, with offices in Austin, Texas. Apiture operates in the financial technology industry and uses Amazon Web Services (AWS), S3 as its cloud service provider. It adheres to the Center for Internet Security (CIS) framework and is compliant with SSAE 18, SOC2 Type II (CIS) standards. Its examining bodies include FFIEC.
The Challenge
Apiture migrated to the cloud for improved service delivery speed and quality, but this move presented a challenge for CISO Sean Darragh. He needed to maintain his ability to protect data from attacks and compliance risks. However, the rate and variety at which infrastructure (IaC) and data change in the cloud meant that legacy, non-native, DLP, and governance tools could not keep pace. This reduced visibility rippled throughout SecOps, reducing the confidence in their overall security posture. The security gaps created and accentuated by the cloud set Sean on a search for an automated, data-centric approach to security to solve three problems: Restoring visibility with automated asset discovery and data classification, streamlining risk assessment, detection, and response, and using data insights to define and drive support for proactive defense hardening.
The Solution
Apiture adopted the Open Raven Data Security Platform to gain complete and automated visibility into data types and locations. This information allows them to better manage the attack surface and compliance requirements with precision alerting and accelerated incident response. Open Raven simplified how Apiture answered fundamental questions with automated discovery, mapping, and data classification across an AWS Organization. Open Raven enabled Apiture’s team to apply policies to specific data types regardless of location rather than particular services or storage pools. These data-centric policies automated discovering risks like rogue assets and misplaced data with improper controls. The built-in Splunk-based search, reporting, and analysis allow teams to incorporate data findings from Open Raven into SPL queries, reports, and dashboards.
Operational Impact
Case Study missing?
Start adding your own!
Register with your work email and create a new case study profile for your business.
Related Case Studies.
Case Study
Real-time In-vehicle Monitoring
The telematic solution provides this vital premium-adjusting information. The solution also helps detect and deter vehicle or trailer theft – as soon as a theft occurs, monitoring personnel can alert the appropriate authorities, providing an exact location.“With more and more insurance companies and major fleet operators interested in monitoring driver behaviour on the grounds of road safety, efficient logistics and costs, the market for this type of device and associated e-business services is growing rapidly within Italy and the rest of Europe,” says Franco.“The insurance companies are especially interested in the pay-per-use and pay-as-you-drive applications while other organisations employ the technology for road user charging.”“One million vehicles in Italy currently carry such devices and forecasts indicate that the European market will increase tenfold by 2014.However, for our technology to work effectively, we needed a highly reliable wireless data network to carry the information between the vehicles and monitoring stations.”
Case Study
Safety First with Folksam
The competitiveness of the car insurance market is driving UBI growth as a means for insurance companies to differentiate their customer propositions as well as improving operational efficiency. An insurance model - usage-based insurance ("UBI") - offers possibilities for insurers to do more efficient market segmentation and accurate risk assessment and pricing. Insurers require an IoT solution for the purpose of data collection and performance analysis
Case Study
Smooth Transition to Energy Savings
The building was equipped with four end-of-life Trane water cooled chillers, located in the basement. Johnson Controls installed four York water cooled centrifugal chillers with unit mounted variable speed drives and a total installed cooling capacity of 6,8 MW. Each chiller has a capacity of 1,6 MW (variable to 1.9MW depending upon condenser water temperatures). Johnson Controls needed to design the equipment in such way that it would fit the dimensional constraints of the existing plant area and plant access route but also the specific performance requirements of the client. Morgan Stanley required the chiller plant to match the building load profile, turn down to match the low load requirement when needed and provide an improvement in the Energy Efficiency Ratio across the entire operating range. Other requirements were a reduction in the chiller noise level to improve the working environment in the plant room and a wide operating envelope coupled with intelligent controls to allow possible variation in both flow rate and temperature. The latter was needed to leverage increased capacity from a reduced number of machines during the different installation phases and allow future enhancement to a variable primary flow system.
Case Study
Automated Pallet Labeling Solution for SPR Packaging
SPR Packaging, an American supplier of packaging solutions, was in search of an automated pallet labeling solution that could meet their immediate and future needs. They aimed to equip their lines with automatic printer applicators, but also required a solution that could interface with their accounting software. The challenge was to find a system that could read a 2D code on pallets at the stretch wrapper, track the pallet, and flag any pallets with unread barcodes for inspection. The pallets could be single or double stacked, and the system needed to be able to differentiate between the two. SPR Packaging sought a system integrator with extensive experience in advanced printing and tracking solutions to provide a complete traceability system.
Case Study
Transforming insurance pricing while improving driver safety
The Internet of Things (IoT) is revolutionizing the car insurance industry on a scale not seen since the introduction of the car itself. For decades, premiums have been calculated using proxy-based risk assessment models and historical data. Today, a growing number of innovative companies such as Quebec-based Industrielle Alliance are moving to usage-based insurance (UBI) models, driven by the advancement of telematics technologies and smart tracking devices.
Case Study
Enhancing Security and Compliance in Remitly's Global Money Transfer Service with Fastly
Remitly, an online remittance service, was faced with the challenge of securing its proprietary global transfer network. The company needed a security solution that could meet PCI requirements and protect customers' sensitive transactions through its mobile application. The solution had to be capable of defending against new and emerging attack types without impacting performance. Remitly also had to deal with irregular traffic patterns, such as a sudden spike in account transfers from a small network segment on the Pacific coastline of South America. The company needed to determine in real time whether such traffic indicated an attack or valid requests. A traditional web application firewall (WAF) would not be able to distinguish this traffic, potentially leading to customer frustration if the IP was blacklisted.
