A client delivering digital financial solutions through a platform-based model approached us to carry out a Kubernetes cluster audit.
Rapid sales growth, an expanding user base, and additional workloads resulting from ongoing feature development led the company to migrate its platform to a Kubernetes-based architecture in order to ensure the performance, efficiency, scalability, and flexibility required for further growth.
The platform is a strategic element of the client’s business, forming the foundation of the entire organization’s business model. Its stability and availability directly impact sales continuity and customer trust. In a situation where system reliability can genuinely determine the company’s survival, a Kubernetes cluster audit becomes one of the best ways to reduce risk. It allows early identification of weaknesses, verification of security, assessment of scalability and fault tolerance, and confirmation that the configuration and operational practices will support efficient 24/7 operation.
Sorigo conducted a comprehensive security and configuration audit of a Kubernetes cluster for a client in the financial sector, consisting of more than 20 nodes.
The project aimed to identify potential threats and configuration errors, optimize performance, and prepare recommendations aligned with industry best practices and standards such as NSA/CISA, MITRE ATT&CK, and CIS Benchmark, before the environment went into production.
The audit covered nine key areas of the Kubernetes infrastructure:
Cluster architecture and configuration
Access management (RBAC)
Environment security
Networking and communication
Resource management and performance
Storage and data security
Cluster management and monitoring
Backup, Disaster Recovery, and Business Continuity
Compliance and adherence (CIS Benchmark, NSA/CISA, MITRE ATT&CK)
During the work, the configuration was verified against 145 best practices and security patterns, and areas for optimization were identified.
The entire engagement was completed within a 3-week timeframe. The client received a detailed report summarizing the audit findings, which was then presented and discussed during dedicated workshops with Sorigo experts.
Based on the audit findings, Sorigo prepared a remediation and development roadmap, providing a practical plan to enhance the security, stability, and performance of the environment.