Skip to main content
Case StudiesTechnology

EnKash Case Study

By June 12, 2025No Comments

EnKash Case Study

Executive Summary

EnKash is a next-generation FinTech startup that provides innovative financial solutions tailored for B2B enterprises, including SMEs, startups, and large corporations. With offerings such as Corporate Credit Cards and New Age Digital Banking, EnKash is transforming how businesses manage expenses and access financial services.

Founded in mid-2017, EnKash has quickly made a significant impact in the FinTech ecosystem. Headquartered in India, the company has established a strong presence in Mumbai, Delhi-NCR, Pune, and Bengaluru.

EnKash is fully compliant with PCI-DSS, RBI regulations, and holds a SOC 2 Type II certification—ensuring a high standard of security and data protection.

The EnKash platform simplifies business expense management by enabling enterprises to issue corporate cards, set spending limits, monitor transactions in real-time, and generate comprehensive expense reports. It offers enhanced visibility, control, and insights into company spending patterns.

Client’s Challenge

EnKash operates in a highly regulated financial environment, requiring a secure, compliant, and highly available infrastructure. The key challenges faced were:

  • Security and Compliance: The infrastructure needed to adhere to PCI-DSS and RBI standards, with built-in redundancy, monitoring, and security controls.
  • OS Lifecycle Management: Frequent operating system patching and upgrades were essential to mitigate vulnerabilities.
  • Data Integrity: Business-critical data required encryption at rest, high availability (HA), and automated daily backups.
  • CI/CD Requirements: Deployment needed to be automated for faster feature releases and consistent delivery pipelines.
  • Scalability: Applications required high availability and elastic scalability to handle dynamic workloads.
  • Cloud Compliance: AWS resources had to comply with internal governance and regulatory standards.
  • Credential Management: Application secrets were hardcoded, posing a major security risk.

Architecture Diagram

Solution

TechPartner collaborated closely with the EnKash engineering team to design and implement a secure, compliant, and scalable infrastructure on AWS. The solution addressed all major pain points and aligned with industry best practices.

Key Highlights of the Solution

  • Automated Patch Management:
    • Utilized AWS Systems Manager (SSM) to automate patching for both EC2 instances and EKS worker nodes, ensuring secure and up-to-date systems.
  • Secure and Resilient Data Layer:
    • Deployed Amazon RDS in Multi-AZ mode with disk encryption enabled.
    • Configured read replicas for improved performance and automated backups for disaster recovery.
  • CI/CD Automation:
    • Implemented Jenkins pipelines running on cost-optimized AWS Spot Instances using Terraform.
    • Automated build and deployment of artifacts to Amazon ECR, from where EKS pulls and deploys the containers using Helm charts.
  • Scalable and Highly Available Application Infrastructure:
    • Leveraged Amazon EKS to host containerized applications, ensuring high availability and seamless scaling.
  • Security and Compliance Monitoring:
    • Integrated AWS Security Hub, AWS Config, and Amazon GuardDuty for continuous compliance monitoring, resource auditing, and intrusion detection.
  • Secrets Management:
    • Migrated sensitive credentials to AWS Secrets Manager.
    • Applications now retrieve secrets securely using instance profiles with read-only access, eliminating the need for hardcoded secrets.

Business Impact

  • Enhanced infrastructure security and compliance posture.
  • Improved deployment agility with automated CI/CD workflows.
  • Reduced operational overhead through automated backups, patching, and scaling.
  • Achieved cost efficiency by leveraging Spot Instances and cloud-native services.
  • Strengthened data protection and secrets management, minimizing security risks.