What does a professional cyber security check really uncover?
Virus scanners and firewalls protect – but they don’t see everything. Leaked employee passwords, undetected shadow IT or a phishing email at the wrong time can still become a gateway.
We analyze your network from the outside and inside: Vulnerability scans, breach analyses, phishing simulations. The result is a management report with concrete, prioritized measures.
You can find the full scope of the cyber security check in the info sheet – from the risk analysis to the executive summary report
Let us help you optimize your platform strategy with our comprehensive analysis of technical and commercial criteria. We develop target architectures that support and drive your business goals.
The challenge
The client's requirement was to redesign the existing tariff calculator for faster calculation and comparison and to create direct interfaces to insurance companies for online processing. An external data storage for brokers was to be improved and a new customer portal for efficient support was to be created.
The solution
We used microservices to create independent and flexible modules that increased scalability and maintenance efficiency. A BPM tool was integrated for calculating offers from insurers without APIs available. Drools was integrated for precise insurance rate calculations and process handling was developed independently.
Client
A conglomerate of more than 800 independent insurance brokers
We strengthen your infrastructure security: interim CISO services with coordination of external penetration tests, security consulting with cyber risk analyses, managed firewall with Cisco next-generation firewalls and proactive threat defense, holistic endpoint security (zero trust, EDR, DLP) and Microsoft 365 protection incl. Entra ID and MFA. Our dedicated implementation teams implement secure VPN access, security patch management, infrastructure-as-code automation, employee sensitization and 24/7 monitoring with AI-supported threat detection – for comprehensive protection of your critical infrastructure.
Our DevOps and AIOps experts help create infrastructure-as-a-service, infrastructure-as-code and make AI operations fully integrated into your infrastructure, permissions and security frameworks. Use our team to keep your specialists up date in this fast changing times of data modeling, infrastructure integration and controlled prompt management.
The challenge
The process for preparing the Bank Confirmation Letter (BCL) was inefficient, time-consuming and expensive in the past, as it took up to three weeks to process BCLs and involved dozens of employees. This led to bottlenecks during the critical year-end closing period and a poor customer experience.
The solution
We redesigned the BCL process using a microservice architecture and AWS to automate the creation and delivery of BCLs. Processing time has been reduced to 2 working days, with 100% of BCLs sent on time, improving the customer experience and increasing process efficiency in the core banking system.
Client
One of Austria's leading corporate and investment banks
As platforms and services move to (hybrid)clouds, keeping cost under control becomes a major challenge – one that our FinOps experts help with. Aligned with your platform- and architecture strategies as well as commercial targets, we make budgeting of cloud expenses possible & predicatble and setup controlling & approval processes for your finance teams.
Rely on our IT specialists for your cloud migration. Our project managers, architects, business analysts, DevOps specialists and testers will guide you through your migration project: from host applications to multi-cloud solutions, supported by leading hyperscalers such as AWS, GCP and Azure.
The challenge
The bank had to streamline its e-banking IT landscape, migrate customers from four solutions and introduce the first cloud application that implemented the new digital strategy and integrated it with existing systems.
The solution
We developed a customizable, cloud-based e-banking solution with a scalable and reusable architecture. By using a microservice approach, we enabled easy integration with existing systems and rapid deployment of new features.
Customer
A German bank with more than 15 million customers worldwide
We use proven IT infrastructure benchmarks to analyze architecture, technology, processes and costs in order to create an optimal IT environment for you. Our expertise covers all areas of basic infrastructure: directory services, servers, backup, storage, databases, DR, IAM, data centers, IT security, communication & collaboration, provider and carrier services as well as IT service desk.
Our network engineering also includes professional network and WLAN solutions: professional WLAN concepts with AI-supported illumination, site-specific planning, installation and secure guest access (incl. WiFi 6, 802.1X, indoor/outdoor), enterprise switching and routing with multi-gigabit performance as well as structured cabling (copper Cat6A/Cat7, fiber optic/fiber optic) and server room construction. The findings will show you where action is needed and where there is potential for optimization. The necessary steps for consolidation, required interfaces or realignment are then defined in detail – based on your business and IT strategy, and we also take care of the final installation, configuration, assembly and commissioning.
The challenge
The customer's requirement was to maintain the stability of the critical SWIFT infrastructure while implementing numerous customer and regulatory requirements and the need for process improvements.
The solution
New configurations of the existing SWIFT payment routing solution were created and consulting services were provided for team building, process improvements and needs assessment. In addition, a process for the integration of new customers was introduced.
Customer
Austria's largest banking group
Evaluate together with our experts where you are today and where you want to go!
Discover more Services
Discover more Services
Discover more Services
Cloud migration refers to the process of transferring data, applications and IT workloads from local data centers to cloud infrastructures. The three most common approaches are lift-and-shift (unchanged transfer), re-platforming (adapted architecture) and refactoring (complete redevelopment for the cloud). Which approach makes sense depends on the existing system landscape, the ongoing operating costs and the defined IT target image. Larger migration projects typically require teams of project managers, architects, business analysts and DevOps specialists.
FinOps (Financial Operations) is a practice that brings together finance, technology and business teams to make cloud spend visible and controllable. Without structured FinOps, cloud costs often grow uncontrollably: Resources continue to run even though they are no longer needed, and budget responsibility is unclear. A functioning FinOps model creates cost transparency at team or project level and enables well-founded decisions to be made about scaling and shutting down workloads. This is particularly critical for hybrid architectures with multiple cloud providers.
Different regulations apply to cloud infrastructures depending on the industry and type of company. ISO 27001, BSI IT-Grundschutz and the EU's NIS2 Directive, which sets out specific requirements for risk management, reporting obligations and security measures for operators of critical and important infrastructures, are widely used. For financial institutions, there is also DORA, and PCI-DSS for payment data processors. Which standards apply in each individual case depends on the sectors and markets in which a company operates.
SPG supports cloud migrations on the three major hyperscaler platforms: Amazon Web Services (AWS), Google Cloud Platform (GCP) and Microsoft Azure. The areas of application range from host applications to multi-cloud solutions, depending on the IT strategy and the requirements of the respective project. Project teams are made up of project managers, architects, business analysts, DevOps specialists and testers. For companies with parallel on-premises requirements, SPG also offers support for hybrid architectures.
An interim CISO temporarily takes on the role of IT security officer in a company without having to fill a full-time position. This makes sense during transitional phases, sudden loss of internal security responsibility or when companies start security projects for which they lack the internal expertise. SPG offers this service as part of its infrastructure security offering, including coordination of external penetration tests and setting up 24/7 monitoring. Firewall management (Cisco next-generation firewalls), endpoint security and security patch management can also be taken over.