Case Study: Finastra achieves rigorous app security validation for FusionFabric.cloud with Black Duck

Finastra and Synopsys SIG: Partnering to bring world-class security to Finastra’s app ecosystem

Finastra, a leading provider of banking and financial services software, operates FusionFabric.cloud, an open marketplace for FinTech apps that must meet strict regulatory and customer security expectations. To ensure applications are secure from design through deployment and to build trust among banks and FinTech vendors, Finastra partnered with the Synopsys Software Integrity Group (SIG).

Synopsys implemented its application security validation program—combining Coverity static analysis, Black Duck software composition analysis, penetration testing, and code reviews—to vet apps on FusionFabric.cloud. The program has validated more than 20 apps from 18 FinTechs, enabled 65% of participants to quickly correct minor security gaps, sped go/no-go decisions, and delivered third‑party assurance that strengthens confidence for both FinTech providers and financial institution customers.

Finastra

Nir Valtman

VP and head of product and data security