Skip to main content

We will now tell you about an experience of ICBC, which called on our services in DevSecOps, which needed to analyze the benefits of applications and infrastructure development processes.

What is DevSecOps for? ICBC’s experience

As the main objective, DevSecOps addresses security issues of the software under development in order to perform a benefits analysis of both the apps and the infrastructure. We could define it as the process of integrating security in the processes of development and operations of software applications. Therefore, the decision to choose a good candidate to solve our dilemma could not be easily solved.

After an arduous evaluation, we found Epidata, who quickly took the initiative and started with this project, dividing the work into different stages. 

The first step was the assessment with architects, stakeholders and developers, a great team that stuck together and, at all times, overcame individual barriers. This allowed us to detect the problems and limitations and define the models and services to be supported; the process had already begun and the team worked in a harmonious and assiduous manner.

The next step was to generate the strategy that would be carried out. At this point, we created a roadmap where we defined processes and best practices according to each of the settled objectives.

But how to prioritize within a project of this magnitude? 

The fundamental thing was to establish a lifecycle execution capability of the selected apps (design, build, test, deploy, operate) using Gitlab’s tools and special software engineering processes, such as SSDLC and DevSecOps. For this, we decided to focus on task automation, achieving Continuous Integration (CI) and Continuous Deployment of applications (CD), including the automation of all possible code quality verification tasks.

Finally, we reached the best result the project could have. It was a resounding success in each of the stages developed by Epidata, who provided us with a comprehensive solution that contemplated from the selection and implementation of the appropriate tools (GitLab) to the Hands-On, and the Know-How transmission, which improved the communication and, therefore, the efficiency of our processes.

Thus, from the on-premises implementation of GitLab, web met a series of challenges that involved the correct design and configuration of the infrastructure, as well as its implementation in ICBC’s server ecosystem.  In addition, we achieved an architecture that allows redundancy and failover on the secondary server in case of failure of the primary one. In other words, we now have a robust but simple to manage architecture.

Reach out to our DevSecOps experts and fortify your company! Let’s keep making future!

About Epidata

Global privately-owned company specialized in innovation outsourcing, dedicated to providing software development and software design services, application modernization, RPA, machine learning and Big Data, among others. Its solutions transform businesses, optimizing operations and co-creating better digital experiences for customers and employees.

Epidata has alliances with leading innovation and knowledge companies such as Microsoft, GitLab, Mulesoft, Salesforce, Oracle, MariaDB, Red Hat and HelpSystems. These partnerships help other companies to stay current.

Epidata operates in Argentina, Chile, Colombia, Peru, Uruguay and the United States (San Francisco, California), where it has a track record of successful support to multinational corporations such as Stanford Research Institute International, JP Morgan, Tenaris, Turner, Telecom, HSBC, Monsanto, Walmart, Asana, among others.