GFT
Dean highlights the importance of this comprehensive approach : “ Our goal was to set a new benchmark for security and scalability and to build customer-centric , cloud-first solutions where speed and responsiveness were imperative .”
Integrating security throughout the development process GFT ’ s security-first approach is integrated into every stage of its work with clients . As Dean explains : “ We start having those security conversations as part of the design of the neobank . What are the customer ’ s requirements ? We ’ ll drill down into their business rationale , their technology requirements but we ’ ll also ask them about their security risk posture .”
To fortify the codebase for application code and backend microservices , GFT leverages GitHub ’ s advanced security capabilities .
These are embedded into the build and deploy pipelines for static code analysis and secrets scanning , alongside Prisma Cloud ’ s Cloud Code Security for scanning and hardening IaC templates against misconfigurations .
Dean elaborates on the use of GitHub : “ Even if you use some of the Atlassian products like Bitbucket , it ’ s GitHub under the hood . So it made sense to focus our engineers ’ expertise and training on and around how to get the most out of GitHub .
“ We make sure that our engineers can use all of the functionality . We make sure they understand the full scope of the feature set .” gft . com 15