DevOps World | Jenkins World 2019 Lisbon has ended
Back To Schedule
Wednesday, December 4 • 11:30 - 12:15
How We Used DevOps to Build a New Bank, Not from Scratch

Log in to save this to your schedule, view media, leave feedback and see who's attending!

The context: - we're building a new bank for the French market, for an existing entity - business model is new, banking license is new, but the codebase is licensed from successful digital a bank in Poland - we took 30+million lines of code from the bank in Poland, and building on this base - worked for 2 years to adopt this "ecosystem of banking systems" to build the new French brand - integration with French financial ecosystem, French regulatory ecosystem, existing internal systems, and customize to client needs The challenges: Project is almost pure waterfall - first challenge was to embed DevOps culture within this approach. Second challenge is existing internal IT structure, procedures, security requirements - geared towards supporting the existing entity operations, which are not 24/7, contrary to the new bank being built. Third challenge was to take the "product" developed at the Polish bank - which was never built to be a product, but as set of systems to support it's internal operations, which is quite different to building a product to be sold - and start changing it to suit target needs, at the same time building effective SDLC and DevOps processes to support the multi-year initiative. Fourth challenge is the strict security requirements, and resulting strict split of responsibilities between the Client teams delivering and supporting infrastructure, and the project delivery teams delivering and supporting the application. The solution: Integration set of tools to support DevOps and DevSecOps, with: - Jenkins as orchestrator - remote PowerShell used for deployment solution to target servers (11 environments in dev, test, prod loops, with 30-100 servers each depending on purpose, dozens of different server roles and different applications) - SonarQube for static analysis - OWASP ZAP and several other open source tools for DevSecOps - Atlassian stack - Jira/Confluence/Bitbucket - as support tools & code repo - Zabbix for monitoring - Splunk for log aggregation - Selenium for automated end to end tests Core features: - one click deployments of entire non-mainframe part of solution (mainframe is more tricky) - on demand deployments of specific components - automated post-deployment health checks of environments - static and dynamic automated security tests - static code analysis embedded within process

avatar for Przemysław Dygdoń

Przemysław Dygdoń

Senior Manager, Accenture Poland
IT Operations Management: applications and infrastructure maintenance, IT budget planning and execution, vendor management, people and team development, ITIL.Large IT Systems Implementation: core systems implementation and maintenance experience in financial institutions, IT architecture... Read More →
avatar for Marcin Mączka

Marcin Mączka

DevOps Lead, Accenture Poland
I'm a versatile IT professional who worked in almost any of IT roles, from nuts and bolts to holding a steering wheel and painting the road signs. Engineer, designer, technician, driver, mechanic, dealer - you name it. I've been also a passenger as a business product owner or business... Read More →

Wednesday December 4, 2019 11:30 - 12:15 PST
Auditorium VII