A Global Financial Institution Unifies Data Security Management with Fortanix Data Security Manager
Customer Profile
A global financial leader operating in 100+ countries, offering diverse financial services such as consumer banking, investment banking, securities brokerage, and wealth management.
Products
Data Security Manager
Requirements
The customer operates globally with multiple data centers and a multi-cloud infrastructure. They urgently needed to replace their outdated data security solution. With their application teams transitioning to the cloud, the customer wanted to strengthen data security. They required a platform capable of supporting their expanding business needs in the following areas-
- Scalability for Virtualization Security: Needed an encryption solution to support tens of thousands of VMware instances.
- Multicloud Data Security: Required secure integration across multiple cloud environments for business growth.
- Operational Efficiency and Automation: Sought a high-availability, low-latency system with REST API integration for secrets management automation.
- Compliance Requirements: Needed a solution meeting FIPS 140-2 Level 3 HSM certification.
Fortanix Solutions
Fortanix Data Security Manager (DSM) provided a unified and comprehensive data security solution that offered the flexibility to support various data security use cases in onpremises and cloud environments.
Key Management System (KMS) for VMware
Fortanix offered a Key Management Service (KMS) to generate, manage, and store encryption keys for data protection within VMware machines that ran critical applications and handled customer data, transaction records, and financial reports.
Hardware Security Module (HSM)
The Fortanix KMS included a natively integrated HSM, which performed cryptographic operations within secure hardware, preventing keys from being exposed even to internal users or applications.
File System Encryption
Fortanix Filesystem Encryption allowed the customer to go beyond full disk encryption and protect individual f ilesystems mounted on a specified host. The customer applied fine-grained access controls and managed encryption keys efficiently at scale.
Secrets Management
Secured sensitive information like API keys and passwords using a Key Encryption Key stored in the HSM, ensuring encrypted secrets remained inaccessible to attackers.
Benefits
Fortanix provided a unified platform that secured data across files, full disks, and databases while also securely managing secrets with keys in FIPS 140-2 L3 compliant HSMs.
Fortanix DSM included powerful APIs (such as REST, PKCS#11, and KMIP), which enabled the customer to rapidly onboard new business units without disruption.
With Fortanix DSM, the customer operated in both on-premises and cloud environments seamlessly.
Fortanix helped the customer comply with regulations such as GDPR.
