Energy utility, DACH
Migrating a monolithic ERP landscape to the cloud
Zero-downtime migration of 14 legacy services to Kubernetes — with a GitOps pipeline and 70% lower infrastructure costs.
← All projects
Insurance group
Multi-tenant cloud foundation on Azure
Landing-zone architecture for 11 business units with policy as code, automated compliance reporting and self-service provisioning.
At a glance
- Client
- Insurance group
- Industry
- Insurance
- Service
- Consulting
- Project duration
- 12 months
- Team
- 1 architect, 2 engineers
Starting point & goal
An insurance group wanted to bring eleven business units into the Azure cloud in a controlled way — compliant, and without every unit reinventing the wheel. What was missing: a shared foundation with clear guardrails.
Challenges
- Eleven business units with different requirements and maturity levels
- Strict regulatory requirements from supervisory authorities and data protection
- Shadow IT due to a lack of self-service offerings
- Compliance evidence previously manual and error-prone
Implementation
We designed and implemented a landing-zone architecture that expresses governance as code: policies, network topology and permissions are versioned and enforced automatically. A self-service portal provisions compliant environments in minutes — compliance reports are generated automatically.
Tech stack
Cloud
- Azure
- Entra ID
Infrastructure
- Terraform
DevOps & observability
- Azure DevOps
- Policy as Code
Results
01
Eleven business units on one shared foundation
02
Environment provisioning down from weeks to under an hour
03
Compliance reporting fully automated