HUBTALK #4 – Faster deployments to support more efficient business processes
The fourth episode of our HUBTALK series features Thomas Cheronneau (Site Reliability Engineer, LUXHUB), Leo Salvador (DevOps Engineer, LUXHUB), Sébastien Fischer (DevOps Engineer, LUXHUB) and Vincent Bouckaert (Cybersecurity & SecDevOps Engineer, LUXHUB). Lately, they have all been deeply contributing to setting up systemic agility and scalability in a zero-trust clustered infrastructure that now enables faster innovation and value creation through standardized and fast deployments.
Increasing efficiency as a must for aligning fast with regulation and competition
Coping with financial regulations standards (security, quality, compliance) is tough, especially for small entities or startups. To do so, LUXHUB recently reshaped its internal infrastructure and software delivery process, making the most of the Infrastructure-as-a-Service principle, clustering capabilities (Kubernetes) and zero-trust concept. As explained by Thomas Cheronneau, “Kubernetes accelerates the continuous integration and delivery processes, and allows enforcing security by design. Therefore, when it comes to testing innovative ideas and/or features, it makes our products safely fast to bootstrap or instantiate. Quality control and securitization is ensured by the common deployment process we designed and validated with our compliance and security advisors”.
This migration was built leveraging GitOps principles – using Flux alongside Kustomize and Helm –, meaning that “everything from third-party software to LUXHUB configurations is in version control software. The operations team can just pick up the version of bundled software-infrastructure they want, and they are then automatically made available.” The experts highlight again: “it just makes the update almost direct; the full infrastructure itself is versioned, which clearly streamlines operations and guarantees security standards, in accordance with the financial services industry.”
DevSecOps: security by design, controlled in every process
“Security requires constant vigilance. It is not something one works on periodically. Therefore, it needs to be included in every single step of the software delivery process: from software design to infrastructure setup. And more importantly, it must be constantly tested,” explains Vincent Bouckaert.
“Startups or young companies like LUXHUB must leverage the automation of security controls and implementation of modern concepts like zero-trust to achieve this within reasonable costs. The Kubernetes initiative is a perfect fit to develop such an approach,” he adds.