September 19, 2024

Integration Manager’s New Features: Vulnerabilities Manager, Secrets Manager, and Application Configuration

by Kent Brown in Announcements , API Management , Banking Core Integration , IT Management 0 comments

Release date: September 3, 2024

Fintech Hub (our Integration Platform as a Service) provides secure, efficient, self-service tools that simplify the complex integration challenges faced by financial institutions (FIs). This update introduces three powerful new features: Vulnerabilities Manager, Secrets Manager, and Application Configuration. Vulnerabilities Manager helps FIs maintain compliance by identifying and addressing potential security risks in their container environments. Secrets Manager protects credentials and passwords in an intuitive way that handles sensitive data securely. Application Configuration simplifies the management of runtime variables, making deployments faster and more straightforward.  

Vulnerabilities Manager: Enhancing security and compliance

Vulnerabilities Manager introduces a powerful tool for scanning container images for security vulnerabilities, ensuring compliance with SOC 2 and other standards. It identifies Common Vulnerabilities and Exposures (CVEs), which are publicly known security flaws, allowing users to proactively address issues as they arise.

Vulnerabilities Manager

By integrating with our container registry, this feature scans for vulnerabilities, including CVEs, and provides detailed reports on any risks detected in your application containers. The Vulnerabilities Manager acts as a monitor, where each container image is thoroughly scanned and flagged for vulnerabilities, offering a clear and organized overview of potential risks. Users can quickly identify which components need patching, understand the severity of each CVE, and take immediate action to ensure the security of their systems.

Key benefit to FIs:

This feature simplifies vulnerability management by providing visibility into potential risks, ensuring FIs can address vulnerabilities efficiently. FIs can ensure their applications meet stringent compliance requirements, reduce the risk of security breaches, and stay ahead of emerging threats by addressing vulnerabilities as soon as they are discovered—all without requiring expertise in complex cloud platform tooling.

Secrets Manager: Protecting sensitive data

Secrets such as passwords and credentials are the keys to accessing critical systems. Without the right controls, these keys can fall into the wrong hands, potentially compromising sensitive data. Secrets Manager provides a streamlined and secure way to handle the storage, management, and deployment of these sensitive credentials individually, ensuring that each secret is securely managed and accessible only to those with the appropriate permissions.

Secrets Manager

Traditionally, managing secrets involved complex tools at the cloud provider level. However, with Secrets Manager, we offer a simplified solution that allows users to configure secrets directly through the Integration Manager portal. This role-based access allows users to work without seeing or storing sensitive credentials. Secrets are loaded invisibly into Kubernetes clusters and securely accessed at runtime.

Key benefit to FIs:

Financial institutions can now manage secrets without exposing them to developers or other users, ensuring a separation of duties and reducing the risk of accidental disclosure. This high-level control allows FIs to maintain security while enabling faster, safer API deployment.

Application Configuration: Streamlining deployments

Beyond secrets, applications also require configuration details—such as URLs and runtime variables—that must pass into the environment. Application Configuration allows users to easily manage these settings, whether sensitive or not.

Application Configuration

With our new UI, users can map environment variables to their applications, whether these are hardcoded values or pulled from pre-configured secrets in the Secrets Manager. The system integrates seamlessly with the GitOps model, ensuring all configurations are saved in a GitHub repository, allowing for transparent and structured version control.

Key benefit to FIs:

By simplifying the configuration process and automating GitOps best practices, FIs can more easily manage their application environments without requiring deep technical expertise. What once needed manual coding from a developer is now streamlined through Application Configuration, speeding up deployments and ensuring code accuracy.

Another step toward simplifying digital integration

These new features reflect our ongoing commitment to delivering cutting-edge tools that make digital integration simpler, faster, and more secure. Whether you’re a large bank or a smaller credit union, these new features are designed to help you innovate quickly without sacrificing security or compliance.

If you want to learn more about how these features can help your FI thrive in today’s digital landscape, please contact our team today.


Leave a comment