Skip to main content

Development of a central application in the OZG environment

Competent partnership from requirements definition to finished application

Get to know us now

An application for all citizens

Applications for public administration must meet especially high demands. A digital administration can provide great service quality for both citizens and authorities, but the applications must be secure, performant and scalable. The Onlinezugangsgesetz (OZG) defines many of the requirements for digital administrative services and sets high standards.

Frau mit roten Haaren arbeitet konzentriert am Computer, auf dessen Bildschirm Kubernetes-Dashboards mit Systemmetriken angezeigt werden

Tailor-made Kubernetes platform for security, compliance and performance

Our client, a central authority in the public sector, recognised these needs early on and relied on our customised platform solution in the area of containerisation. Our mandate:
To create an infrastructure that fulfils statutory requirements while reliably meeting operational, regulatory and technical demands.

Foto von Händen auf einer Notebook Tastatur. Im Vordergrund sind Schlosspiktogramme mit Linien zu sehen die miteinander vernetzt sind.

The Goal

Digital sovereignty through a robust and scalable Kubernetes platform

  • Stable and secure application operations

  • Reliable and rapid updates

  • Fault tolerance & good performance

  • Low burden on internal IT

  • Excellent digital user experience

The Challenge:

Managing complex policies and diverse requirements

  • Creating a foundational platform for container operations

  • Stringent security specifications based on IT-Grundschutz, ISO 27001, GDPR and NIS2

  • Integration of many external systems

  • Guarantee of performance and reliability

Man mit PC vor sich. Auf dem Bildschirm ist das KubeOps Dashboard zu sehen.

Our established approach

From requirement analysis to release into productive operations, we develop the BSI-compliant Kubernetes platform. Automation, security-by-default and optimised processes ensure stability, efficiency and scalability. Our approach is divided into four phases:

Grünes Piktogram in mit einer Lupe und Zahnrädern, symbolisch für Analysephase

Analysis

  • Requirements analysis: Which technical and regulatory requirements must be met?

  • Alignment with operational requirements: Which entities need to be coordinated with?

  • Technology comparison: Which existing solutions can be used?

  • Need for in-house development: Which tools must be newly developed?

Grünes Piktogram in Form einer Liste mit einem Stift, symbolisch für Definition der Anforderungen.

Planning

  • Software architecture: Definition of central components taking all requirements into account.

  • Security by design: Ensuring avoidance of critical vulnerabilities.

  • Documentation & traceability: Transparent supply chain and process tracking from the start.

  • Compliance: Regulatory prerequisites already considered during conception.

Grünes Piktogram in Form von Code und einem X und einem Haken. Darüber gestellt ist ein Zahnrad. Dies soll die Entwicklungsphase symbolisieren.

Development

  • Automation: Efficiently design standard lifecycle management processes such as cluster updates, setup and expansion.

  • Security hardening: Secure operational tools according to self-defined, BSI-compliant security standards.

  • Tool integration: Embed operational tools into lifecycle and cluster management.

  • Security & high availability: Configure all tools according to security-by-default principle for maximum fault tolerance.

  • User experience: Optimise usability for intuitive use.

Grünes Piktogram mit einer Glühbirne und einem Zahnrad, welches mit Pfeilen die im Kreis gehen, die Übergabe in den operativen Betrieb symbolisieren sollen.

Operations

  • Onboarding & establishment: Support the client during implementation.

  • Support & key account management: 2nd/3rd-level support via professional help-desk and account management.

  • Scaling: Efficient provisioning and operation for multiple clients.

  • Testing & audits: TDD-supported development with multi-week staging, integration tests and automated vulnerability & malware scanning.

  • Certification: CNCF-conformant Kubernetes installer for standardised and secure deployments.

Customer success & added value

Results achieved

BSI-compliant Kubernetes platform in the OZG environment

Demonstrable security in everyday operations

Reliable and verifiable compliance policies

Added user value

Best practice operation by design (integrated in the tool)

Reliable and proven maintanence efforts at the touch of a button

Complete tool set for productive operation

Impact

Stable platform for Kubernetes operations

Reduced effort and risk in maintenance and update processes

Sovereign cloud solution without vendor-lock-in

    Your partner for success

    Let's get to know each other and build trust

    Together we analyze key bottlenecks

    We develop an initial concrete solution proposal

    Together we define a clear vision for the future

    Free initial consultation