Contact Us
Contact Us

Case Study

Protecting Vital Data: FNZ’s Enhanced Encryption Security Solution

Finance

FNZ

Overview

FNZ, a global wealth management platform provider responsible for 8,000 wealth management firms and enabling over 20 million people to invest, approached FullProxy seeking expertise in protecting vital data through enhanced encryption key security. As a leader in the financial technology sector, their commitment to safeguarding sensitive financial information drives their continuous security improvements.

The Challenge

With their extensive reach and responsibility for protecting vital data across multiple wealth management firms, FNZ faced critical security challenges surrounding their encryption key management. In today’s digital landscape, compromised encryption keys pose severe security risks, potentially leading to devastating data breaches and unauthorised system access. These vulnerabilities can be particularly detrimental to financial services platforms like FNZ, who handle sensitive client information and substantial financial assets.

The Dangers of Encryption Key Compromise

One of the most concerning aspects of encryption key compromise is its often-silent nature. Many organisations remain unaware that their keys have been compromised until attackers exploit the vulnerability, making this cyber threat particularly dangerous. For a platform provider like FNZ, protecting vital data is crucial, as any delay in detection could result in extended periods of unauthorised access, potentially compromising millions of customers’ financial information.

The task of building and configuring the HSM infrastructure during the Covid pandemic was particularly challenging given the geographical location of the hardware.

Stephen Mellon, Consultant
FullProxy

FullProxy's Solution

FullProxy developed and implemented a comprehensive solution focused on protecting vital data through a sophisticated combination of F5 BIG-IP Local Traffic Managers and Entrust nShield general-purpose Hardware Security Modules (HSMs). This integration created a robust platform for secure encryption key storage and management.

Our implementation strategy prioritised maintaining continuous operations, ensuring the solution was deployed without any disruption to FNZ’s extensive wealth management services. This seamless integration was crucial given the scale of their operations and the number of clients depending on their platform for protecting vital data.

 

Results and Benefits

The implementation has delivered significant improvements to FNZ’s security infrastructure:

Our solution enabled FNZ to launch a new nationwide service utilising the secure platform for encryption key storage. This enhancement provides robust protection for authorised users against unwanted data breaches, significantly reducing the risk of unauthorised access to sensitive financial information.

The implementation achieved several critical objectives:

  • Established a secure foundation for encryption key storage and management
  • Maintained operational continuity throughout the implementation process
  • Enhanced protection against unauthorised system access
  • Improved monitoring and detection capabilities for potential key compromises
  • Strengthened overall data security measures
  • Created a scalable solution for protecting vital data across their entire platform

Migrating existing protected crypto keys from the F5 BIG-IP LTM to the HSM in a live environment was achieved seamlessly with no impact to customers.

Head of Technology Services

Why FullProxy?

FullProxy’s expertise in both F5 technologies and security infrastructure made us the ideal partner for this critical security enhancement project. Our ability to implement complex solutions while maintaining operational continuity demonstrated our understanding of the unique challenges faced by global financial technology platforms like FNZ.

Get in touch with us today!

More Case Studies

pen in hand green keyline
  • Application Pen Testing with Improvement Service

Application Pen Testing with Improvement Service

The Improvement Service team was using terminal-based vulnerability assessment tools, but they needed a more intuitive, user-friendly solution that could provide clear visualisation of security data while meeting the stringent security requirements of public service applications. They were looking for a tool that would streamline their vulnerability management process without sacrificing robust security analysis capabilities.
Read more
Ambulance speeding on blue lights
  • Emergency Services

Automating Certificate Management for South East Coast Ambulance Service

By partnering with FullProxy and implementing AppViewX, SECAmb successfully automated their certificate management, reducing workload, improving efficiency, lessening the risk of private patient data being exposed as it is transferred between departments.
Read more
  • Energy

F5 Hardware Refresh, Software Upgrade and Configuration Migration with C&C Group

C&C Group is a leading software manufacturer specialising in designing, developing, delivering, and hosting cloud-based software solutions. Their solutions are primarily used by UK critical infrastructure companies operating in the electricity, water, gas, and healthcare sectors. As a long-standing customer of FullProxy, C&C Group needed to carry out a vital F5 hardware refresh and Bourne series to rSeries migration in order to modernise their network infrastructure and ensure compliance within a regulatory framework. 
Read more
  • Healthcare

F5 optimisation consultancy for Scottish Healthcare Trust

NHS Lothian had discovered their F5 appliances were sailing with improper configurations, leaving their network vulnerable to malicious intruders. With the spectre of cyber threats looming large, including the ominous prospect of patient data breaches, the need for swift and decisive action was paramount.
Read more
Talk to an expert