Case Study

Automated GCR Secret Management

Challenge

The customer, a large financial media company, operates a hybrid cloud environment comprised of on-premise data centers and multiple cloud providers. While Google natively supports dynamic short-lived credentials for accessing their GCR repositories within GCP, access from on-premise and other clouds relied on static keys with an onerous rotation process.

Solution

Rearc leveraged Cloud Functions and Pub/Sub to integrate external automation workflows in Jenkins with Identity and Access Management in GCP. This solution enables on-demand and scheduled generation of dynamic service account keys for use in on-premise container builds and pull secrets for Kubernetes clusters hosted in any cloud.

Outcome

  • Accelerated development time: A manual process taking several hours now completes in a few minutes.
  • Improved developer productivity: developers were able to focus more on innovation and less on manually rotating and managing keys.
  • Robust security and compliance: Updating manual processes to automated ones improves observability and maintainability for security and compliance.

Latest Articles

Read more about the latest and greatest work Rearc has been up to.

AWS Tenancy Migration And Azure Integration

Rearc performed an application portfolio assessment and designed a migration strategy for Avesis as they moved to a new AWS Organization. Post planning, Rearc leveraged infrastructure as code to deliver a new cloud landing zone in AWS and created an account factory for future growth. Rearc integrated Avesis's new AWS environment with their new Azure environment.

Cloud
AWS
Azure

Securing CI/CD Pipelines for Databricks Platform

This project for a Fortune 500 company strengthened the security of Databricks-integrated data lake pipelines by implementing automated vulnerability detection, secure credential management, and third-party dependency scanning, resulting in a compliant and resilient infrastructure.

Financial Services
Data
AWS

Bringing Product Security to the Public Cloud

Rearc upskilled a Product Security team in public cloud infrastructure as code, developing a secure Terraform module for AWS SNS, and tracking remediation of Trusted Advisor findings.

Media
Cloud Security
Financial Media

Accelerating and Securing Innovation

As organizations strive to innovate rapidly, enhancing development velocity for their applications have become crucial. Rearc partnered with a Fortune 250 customer with the primary objective of streamlining the creation of net-new applications with built-in best practices. Key challenges included ensuring seamless integration with existing systems, maintaining robust security practices, accelerating time-to-market, retaining quality, and more.

Insurance
Modernization
Fortune 250
Next steps

Ready to talk about your next project?

1

Tell us more about your custom needs.

2

We’ll get back to you, really fast

3

Kick-off meeting

Let's Talk