client: Bluestep Bank
timeline: 12 Months
team: 10 Members
Project overview
Bluestep Bank is a dedicated,
solution-oriented lender offering mortgages in Sweden, Norway, and Finland.
They also offer retail deposits at highly competitive rates in Sweden and Norway with an equity release offer available through 60plusbanken in Sweden.
Challenges
Missing expertise in Azure DevOps and Azure Cloud
Space for improvement in existing infrastructure setup
A mix of manually created and IaC-managed infrastructure
The company’s system must align with cloud and security best practices
Risk of facing End of Support for core infrastructure solutions in Azure
Solution
Automated Infrastructure compliance using Azure Policies
Complex audit of IaC codebase with optimization of existing code using a mix of Terraform and legacy Bicep templates
Improved existing Release and Patch management processes for Azure services and Kubernetes especially
Results
Bluestep Bank is now compliant with GDPR standards, meaning that the bank meets the requirements for handling personal data as defined by the law.

Patching periods were reduced from 5 days to 7 hours
Resource compliance achieved the following levels:
— for new infrastructure – 100%
— for existing resources – 87%
— compared to 45% at the beginning of work
