Case Study Klarna - Fully automated security assessments of cloud architectures

 

Klarna is leveraging securiCAD for fully automated security assessments of dynamic cloud architectures.

Klarna is one of Europe’s largest banks and is providing payment solutions for 60 million consumers across 100,000 merchants in 14 countries. Klarna offers direct payments, pay after delivery options and installment plans in a smooth one-click purchase experience that lets consumers pay when and how they prefer to.

Klarna partner with foreseeti to leverage securiCAD for fully automated security assessments of their cloud architectures. As stated by Klarna’s CSO:

Manually modelling an environment of our scale for simulation is simply not feasible not with a high level of detail. While simulation is probably one of the few ways to risk assess a large-scale environment in continuous change, the key is to build the model continuously based on the real environment. We see this as a leap, moving away from human subjective assessment and the rigidity of formal strict security frameworks and keeping consistent security. While frameworks and human assessment will absolutely be a part in our work for the foreseeable future, we also have to find new ways to keep our security posture on top and keep a high speed of innovation.

Through automated modelling of our environment, we see a potential to significantly increase development speed, and take on the challenge of looking at the whole while having clear control of all the details and moving pieces.

The simulation capability increases both our capability to see how changes in one team's environment can affect others and to make assessments more consistent. In the end, it increases security where it really counts.

In the long term, we hope to systematically monitor our entire environment for risks continually.

 

The simulation capability increases both our capability to see how changes in one team's environment can affect others and to make assessments more consistent. In the end, it increases security where it really counts.
- CSO Klarna

 

See also: Article by Mattias Malmqvist, Reporter at computersweden, IDG Sweden: https://www.foreseeti.com/2019/03/12/swedish-technology-simulates-cyber-attacks/

 


About Klarna
Klarna was founded in 2005 in Stockholm, Sweden with the aim of making it easier for people to shop online. In the last 12 years, technology has evolved, excited and transformed the world around us, yet our mission remains as relevant as ever, to make paying as simple, safe and above all, smoooth as possible.

Klarna is now one of Europe’s largest banks and is providing payment solutions for 60 million consumers across 100,000 merchants in 14 countries. Klarna offers direct payments, pay after delivery options and instalment plans in a smooth one-click purchase experience that lets consumers pay when and how they prefer to.

When the company acquired SOFORT in 2014 the Klarna Group was formed. Klarna is backed by investors such as Sequoia Capital, Bestseller, Permira, Visa and Atomico

For more information please visit: https://www.klarna.com