eBook: Beyond the Basics: A C-Suite Checklist for Banking Security Strategy
To guide you toward developing and maintaining a secure banking security strategy, ASEE offers a detailed security checklist to assist you in the process.
The concepts of IaaS/SaaS/PaaS took off back in the 90s. While companies, banks, and government institutions in the region are starting to move, larger companies in more advanced markets are already beginning to leave the cloud. On the other hand, data centers are popping up all over the place, and there is fear of power shortages.
What is happening? What should I buy? These are some of the questions Luka Mićanović, Delivery Unit Manager in the Security&Compliance department at ASEE, will answer for us.
Each type of cloud is different. When we say cloud today, we usually mean public cloud like AWS or Azure. Besides that, there are also private clouds and hosting options. Simplified, in the cloud, you can offer infrastructure where you get machines, and platforms where you get additional services on those servers, so you generally need fewer people to maintain the infrastructure. Also, there is SaaS where you get a complete application and just work with it. The latest thing is serverless (FaaS – function as a service) where developers can directly run code without even thinking about the server.
Public cloud is currently as popular as Taylor Swift. Everyone wants a piece of the pie but doesn’t know exactly why, and more importantly, how. The law of conservation of energy says you can’t create something out of nothing, and this applies here as well. To fully exploit the potential of the cloud, knowledge and effort are required.
The last few years have shown the two biggest advantages of the public cloud – low investment to start a new service (PoC or beta) and almost unlimited scalability. Expected savings, primarily on the people who previously maintained in-house systems, often did not occur or did not happen to the expected extent.
To get the same functionalities in the public cloud, you need knowledge from specialized experts who deal with that specifically. The cloud has an infinite number of functionalities – it has been shown that to arrange things in the desired setup, external company support is often needed, such as ASEE. Only then is good service and the desired benefit achieved.
The message here is not that the public cloud is bad, but that it is necessary to conduct a good analysis and prepare the desired setup. In some cases, it is much better to go in the direction of a hybrid or even a private cloud solution.
Anyone who has an application and plans to install it somewhere! Currently, we provide services for the most sensitive production environments of banks across Europe and simultaneously have isolated environments for smaller development pilot projects, so there are no restrictions on ''who''.
Just contact us for a meeting to confirm that the project makes sense and to agree on when to start. Technically, the most important are the resources and technology to be used.
ASEE can cover everything from the initial assessment, migration, all necessary services and licenses, project management, integration, and later maintenance activities.
Examples of successful migrations from the public cloud and achieved savings can be found online. Specifically, in our environment, we have 60+ banks and processors that have chosen our private cloud and have never looked back.
The biggest impact has been savings in terms of maintaining additional machines, scaling, security, training people, and reducing risks concerning an additional environment that would be in the bank. At least one less thing to worry about!
To guide you toward developing and maintaining a secure banking security strategy, ASEE offers a detailed security checklist to assist you in the process.
Feel free to contact us – zero obligation. Our ASEE team will be happy to hear you out.
