How PNC Bank automated software supply chain compliance with TriggerMesh
As one of the largest banks within the United States with $367 billion of assets under administration, PNC has a massive IT footprint and a dev team that needs to not only deliver innovative code but also consistently meet regulatory compliance requirements. PNC sought to develop a way to ensure new code would meet security standards and audit compliance requirements automatically—replacing the cumbersome 30-day manual process they had in place.
Using Knative, the cloud native serverless and eventing framework, PNC developed internal tools to automatically check new code and changes to existing code. Developers immediately know if their code meets company-wide standards. The power of Knative’s eventing and serverless features allows PNC to bridge processes between Apache Kafka and CI/CD toolchain events and achieve this automated state. PNC also utilized the TriggerMesh declarative API to address the specifics of the event driven workflow. The process allows PNC to stop code from going into production if any part of the requirements outlined are missing. Read the case study.