How Strike is helping Naranja X to make cybersecurity a central part of the development of their projects
Naranja X, one of the most important fintechs in Latin America, started using Strike to make cybersecurity part of their project development. Find out how the process was and the main aspects of their pentest.
Security that drives business forward.
Today over
businesses accept their credit cards
They have over
employees
More than
people have deposit accounts with them
Introduction
Naranja X is one of the biggest fintech companies in Latin America. They have the most used credit card in Argentina with over 5,5 million clients and also offer financial solutions such as debit cards and free accounts on their App.
As their business is constantly expanding, the Premium Pentesing plan is key for them to ensure their client’s data remains secure in each update and their upcoming projects are launched with no vulnerabilities.
Context
As massive access to technology has made Neobanks accessible, the fintech industry has grown exponentially in recent years. To give a clearer glimpse, this segment is expected to show a revenue growth of 42,4% in 2023.
In this context, Naranja X’s main goal is to give massive access to financial services to people that are outside of the traditional financial system. This is why they offer solutions such as saving account accesses, payments, and credit cards.
Problem
For Naranja X, it is important to invest in cybersecurity to have the safe development of their products and businesses. This happens because they have extremely sensitive information about its clients and needed to protect them in the best way possible. Moreover, they currently are working on over 70 active projects and needed a continuous revision of their cybersecurity and finding vulnerabilities while developing.
Also, they have to comply with several regulations from organizations like the Central Bank and PCI DSS.
In this context, Naranja X needed an external pentesting service. They tried with different providers in the past but those didn’t offer an experience that matched their needs, with a lack of communication.
Once their cybersecurity team started using Strike's platform, they quickly realized how the Continuous Pentesting plan could really help them. On the one hand, the team was satisfied with the assigned Strikers, delivering efficient pentests and being openly communicative. On the other hand, that platform itself helped NaranjaX to manage that interaction, as well as its internal workflow.
Key takeaways
Naranja X needed external testing of their system, providing an outward view of their overall cybersecurity, finding potential vulnerabilities, and helping to fix them.
Aspects like a continuous follow-up with Strike's team, as well as an efficient management system in the SaaS Platform, made Naranja X choose Strike over other pentesting companies.
Constant communication was also key to their work because it helped to solve their doubts, which were responded to even after the established scope ended.