Fintech on AWS: From Monolith to Secure, SOC 2-compliant Innovation

Quantum Lending Solutions (QLS) is an established leader in the American fintech sector, on a mission to support small and medium-sized businesses. The company specialises in providing capital to firms often overlooked by traditional banks. Faced with rapid growth, QLS found itself needing to modernise its technology platform.

Services Used:

Client:

Quantum Lending Solutions

Industry:

Fintech
SaaS

Technologies:

AWS
Amazon EKS
Terraform
ArgoCD

Datadog
AWS Identity Center
AWS RDS
Load Balancery AWS

Challenges

Accelerating Growth While Maintaining Compliance

The decision to undergo a technology transformation at Quantum Lending Solutions was driven by the need for continued growth. The existing solution had served the company well in its early stages, but modernisation was essential to meet new business ambitions and rising market demands. The mature, monolithic application architecture posed challenges for future scalability, maintainability and innovation, while the absence of modern practices complicated the path to SOC 2 certification.

Ensuring high availability:

In the world of finance, downtime means reputational risk and regulatory issues. The challenge was to build an always-on infrastructure — resilient, fault-tolerant and invisible to the end user.

Strengthening system resilience through observability:

The lack of deep observability was a barrier to growth. The goal was to move from reactive incident response to proactive optimisation — detecting and resolving issues before they ever reached production.

Accelerating the innovation cycle:

The existing architecture placed the burden of maintaining complex code on developers. The challenge was to create an environment that would unlock the ability to deploy new features quickly and safely, directly supporting product growth.

Droga do certyfikacji SOC 2:

The platform processes sensitive data, meaning its reliability directly determines the ability to work with partners requiring the highest standards. The challenge was to design the infrastructure so that it naturally satisfies the rigorous requirements of a SOC 2 audit.

Rebuilding our core platform and aligning it with SOC 2 requirements was a huge undertaking. Tenesys proved to be not just a vendor, but a true partner throughout the process. They delivered a modern, scalable architecture that gives our developers the freedom to move fast, while giving us the confidence and security our industry demands.

Senior Engineering Manager

Chad Rhyner

Quantum Lending Solutions

Our role

Building a Comprehensive Cloud Platform

Quantum Lending Solutions joined forces with Tenesys to build a new technology foundation and embed a DevOps culture. The project was built on close collaboration and spanned several key areas:

Scope of Work

Infrastructure as Code and Containerisation: We moved away from manual configuration and defined the entire AWS environment in code using Terraform. The heart of the system became an Amazon EKS (Kubernetes) cluster, managed in a GitOps model using ArgoCD. This approach ensures that every infrastructure change is consistent, tracked and fully auditable.

Automated Deployments (CI/CD): We set up fully automated deployment pipelines based on GitHub Actions. New software releases now reach production quickly and safely, eliminating the risk of manual errors.

Deep Application Observability: We implemented the Datadog platform, giving developers powerful tools including APM and distributed tracing. They gained unprecedented visibility into how code behaves in real time, while centralised logging simplified event analysis. We also activated SIEM mechanisms, laying a solid foundation for SOC 2 certification.

Security and SOC 2 Compliance Foundation: The entire infrastructure was hardened (including via Load Balancers), and access management was built on AWS Identity Centre. A key principle was least privilege — every user and service has access only to the resources they strictly need.

Results

Unlocked Potential and Measurable Business Benefits

The new architecture delivered not just technical improvements, but above all unlocked the company’s business potential.

Key Results:

Developer empowerment and acceleration: With Datadog APM and distributed tracing in place, developers gained a powerful tool for analysing application performance in real time. The time needed to diagnose and resolve issues was dramatically reduced, allowing teams to focus on delivering new business value.
Increased deployment agility and safety: Fully automated CI/CD pipelines led to a higher frequency and reliability of releases. Development teams can now deploy changes faster and with greater confidence.
Solid foundation for SOC 2 audits: The new, well-documented and secure infrastructure provides a strong basis for moving smoothly through the SOC 2 audit process — opening the door to partnerships with key regulated players in the market.
Future readiness and scalability: The modern Kubernetes-based platform delivers the resilience and flexibility to handle growing traffic without concern, and to plan further expansion with confidence.

system availability

The Multi-AZ architecture achieved the availability level required for mission-critical financial applications.

Infrastructure change auditability

Implementing IaC (Terraform) and GitOps (ArgoCD) provided full control and change tracking, significantly simplifying the SOC 2 certification process.

In the Financial Industry, Fault Tolerance Is Critical. The Following Parameters Were Formally Defined in the Technical Documentation:

RPO (Recovery Point Objective): Under 5 minutes. Why? In fintech, loss of transactional data is unacceptable. Such a low RPO is essential to preserve financial integrity and maintain client trust.

RTO (Recovery Time Objective): Under 30 minutes. Why? Partners and regulators require operational certainty. The system must be capable of returning to full operation within half an hour — one of the key parameters verified during SOC 2 audits.