Wealth Management FinTech
Ippon was engaged to help integrate a Wealth Management FinTech into one of our main customers in the finance industry. The primary goal was to increase security and automate the creation of users by integrating this new application into the company’s Single Sign-On (SSO). Ippon worked as a team of three developers closely with their architecture team to deliver this over 4 months.
Key results
CUSTOMER CHALLENGE
It is never easy to integrate two companies that built their software solutions independently. Our challenge was to be able to add Single Sign-On (SSO) while re-using as much code as possible to minimize the impact. We also wanted a mostly seamless experience for the internal employees. The FinTech startup picked us because we have vast experience with this client and we had proven experience working with SSO and with startups.
We started by mapping the original login flow and looking for opportunities to add on the SSO login flow without disturbing the design of the application. We found a solution where we were able to integrate without changing how session management or role based access control (RBAC) worked. We added roles to Active Directory and mapped them to existing roles within the application. We were also able to map existing users by their email address so when they logged in via SSO they retrieved their existing user.
We improved the process for new users because we were able to automate it. A user used to be created via a manually filled out form by a user with elevated privilege, but now to have access to the application you just need two things: an application role in Active Directory and a valid login with SSO. Our solution tries to retrieve an existing user based on the user info from SSO and if no user is found it creates a new user.
Ippon brought in a team to help us integrate our platform into the new enterprise requirements and they did a phenomenal job understanding our custom application, determining the best steps for integration, and delivering on their promises successfully. It's been an absolute pleasure working with them!
THE OUTCOME
It is a very interesting project to measure because changing the login process has very few visible changes. Only the login screen changed, and very minimally. However, there was a big impact--both in the usability of the product and in its security.
By using the company’s Active Directory, we aligned role requests and access via the company’s standards and ensured that there were peer reviews to get different levels of access. There was also an audit trail for getting access with who requested and who granted the access. You are now able to login to this application with the same credentials as you would any other application. The same password requirements are now applied consistently with regards to password strength and rotation.
From a user perspective it was now clearer how to get access. There wasn’t a special approval process. You requested access the same way you requested access to any other application within the organization. And if it was the first time you logged in, a user was created automatically for you.
Need to Transform?
Let's meet!Our latest success stories
05/31/2023
Revolutionizing Operations: A Triumph on the Platform of a Major Financial Institution
The portion of the large financial institution that we interfaced with was the center for machine learning. Ippon provided the center for machine learning with a team in a box composed of several site reliability engineers (SRE). SRE engineers have a mixed toolbag comprised of software and devOps skills, there primary focus is to try drive high availability, reliability and scalability. These SRE engineers took up the challenge of overseeing the adoption of SLI/SLO metrics for users of the platform, standing up dashboards to properly reflect the aforementioned metrics, redefining the incident support model and gathering data about all critical services on the platform. As a result of the SREs work, the center for machine learning at the large financial institution has better metrics, tracking and reporting for incidents.
Read more
05/31/2023
Budget-friendly Acceleration, Course Correction and Agile Coaching when a Data Lake pilot hits turbulence
Top 10 private equity firm uses a data lake transformation to also pilot agile development. Their first attempt loses steam, but Ippon takes a different approach.
Read more
05/31/2023
Debt Financing Fintech
Accelerating a Fintech’s Data Migration to Power Data Insights for Making Impactful Business Decisions
A debt financing fintech that offers a single point-of-sale platform with a wide range of pay-over-time products and services which allow merchants to make offers to all customer types with varying levels of credit. The company credits their ability to deliver such a positive experience for merchants and customers due to their world-class support, advanced technology, and analytics that power their product. As growth continues to increase, it is vital for their company to ensure they are able to track and report on key metrics supporting business decisions.
