logo

EN

Products +

Services +

Customers +

Resources +

Santara Improves Security Posture of its Crowdfunding Platform To Meet OJK Requirements

Santara is one of the first and largest crowdfunding platforms based in Indonesia licensed by the Financial Services Authority (OJK). Available for investors and business owners, the Santara platform allows businesses to accelerate growth through easy access to low-cost financing. In 2020, Santara worked with Horangi on a security assessment on both its mobile and web applications, ensuring that it continuously stays compliant with the stringent OJK requirements in Indonesia.

Solutions Used:

Summary:

  • Santara’s crowdfunding platform is used to not only transact investments, but also provides access to sensitive financial and personal records of its investors and customers
  • To strengthen the security of this platform, Horangi was appointed to conduct a Black-box Penetration Test on Santara’s web and mobile application
  • Santara reaped valuable results from this security assessment, allowing it to implement numerous security measures that meet OJK requirements and provide its users greater security assurance

The challenge: Continuous OJK compliance

Santara is one of the first and largest crowdfunding platforms based in Indonesia licensed by the Financial Services Authority (OJK). Available for investors and business owners, the Santara platform allows businesses to accelerate growth through easy access to low-cost financing. 

To stay compliant with OJK regulatory requirements, Santara needs not only robust security expertise and tools, but also a proven security process to lean on. This is critical also because its users depend on the platform for secure financial transactions and protection of their sensitive information.

The engagement: Black-box Pentest by Horangi

Through hearing positive references of Horangi’s service quality and experienced consultants, Santara engaged Horangi to conduct a pentest on its web and mobile applications. In the equity crowdfunding space, demonstrating high standards of information security to customers is of utmost priority.

“Doing comprehensive penetration tests regularly is a must to uphold our high security standards. And this needs to be conducted by both our internal team and third parties.” said Maulana Iskandar Zulkarnaen, Santara CTO.

The results: Greater security assurance to meet OJK requirements

Horangi’s end-to-end project management throughout the security assessment of the Santara web and mobile applications, along with detailed security recommendations, gave Santara the confidence to continue close partnerships with trusted security vendors. 

With information being the backbone of Santara’s business, the right selection of security partners is critical. Horangi is proud to be a security partner of Santara’s and looks forward to repeatedly deliver quality services for the benefit of the business and its community.

“We cannot emphasize enough the importance of information security, especially for similar businesses managing confidential and financial data. Horangi’s service delivery has been nothing short of exceptional, and we hope to continue collaborating with such trusted security vendors in the future.”

Maulana Iskandar Zulkarnaen, Santara CTO