Popup Always Show
เทเวศประกันภัย ยกระดับประสบการณ์ลูกค้า สร้างความน่าเชื่อถือในระบบดิจิทัล เพื่อรับชำระเงินอย่างปลอดภัย ด้วยพลังของ AWS Cloud

Deves Insurance Elevates Digital Trust and Payment Security on AWS—Powered by AIS Business

 

Deves Insurance Public Company Limited—one of Thailand’s leading non-life insurers—has modernized its core digital payment and customer experience platforms on Amazon Web Services (AWS) in partnership with AIS Business. The new cloud-first architecture delivers always-on availability, multi-layered security aligned with banking standards, and scalable foundations for future services including mobile banking and AI-driven capabilities.
 

Company Profile
  • Industry: Non-lifeInsurance
  • Headquarters: Thailand
  • Focus: Secure digital payments, compliant integration with partner banks, resilient customer experiences
  • Vision: Modernize operations and strengthen digital trust while adapting to economic, social, and technology shifts

 

Business Challenge

To meet rising customer expectations and strengthen digital trust, Deves needed to expand capabilities without compromising security or compliance.

 

Key challenges

24/7 stability for high-volume online transactions Alignment with stringent financial and banking regulations Elastic scalability for mobile banking and secure external APIsTighter access controls and auditable operations across legacy systems

 

Transformation Approach

Deves selected AWS as the strategic cloud platform and engaged AIS Business—an AWS Advanced Tier Services Partner—to architect and implement a secure, high-availability, and scalable environment across production and UAT. The goal: elevate security, resilience, and speed while enabling rapid innovation.

 

Solution Architecture
  1. Core Applications on Auto-Scaling Compute Payment Gateway APIs and web applications deployed in separate Production and UAT environments Amazon EC2 with Auto Scaling for elastic capacity and cost efficiencyNetwork isolation across subnets for performance and blast-radius reduction
  2. Data Protection & Database Security PostgreSQL hosted in Private DB Subnets (no public internet exposure) End-to-end encryption (in transit and at rest) and AWS IAM for least-privilege access to sensitive financial data
  3. Multi-Layered Security Controls AWS Web Application Firewall (WAF) to mitigate OWASP Top 10 risks for web and API traffic Application Load Balancer (ALB) to segment and control flows between web and API tiers
  4. Compliance & Monitoring AWS CloudTrail for auditability and change tracking Amazon CloudWatch for real-time metrics, logs, and alerting Amazon SNS for proactive notifications on anomaliesPrivate VPC Endpoints to Amazon S3 so data never leaves private networks
  5. Secure Network Access & Bank Connectivity Registered Elastic IPs aligned to banking security requirements Site-to-Site VPN and hardened Bastion Hosts for controlled administrative access Phase 2: Plan to adopt AWS Direct Connect for higher bandwidth, lower latency, and deterministic network pathsServices from AIS Business: End-to-End Cloud Excellence Cloud Advisory & Migration: Strategy, landing zone design, and secure cutover 24×7 Managed Operations: NOC/SOC monitoring, incident response, and continuous optimization Hybrid & Multi-Cloud Integration: Seamless interop across platforms and partners Secure Connectivity by AIS Network: Enterprise-grade MPLS and Direct Connect solutions

 

AIS Business acts as a long-term technology partner—aligning cloud operations to corporate policies, regulatory standards, and business outcomes.

Outcomes

Enhanced Security & Compliance: Full encryption and IAM-based controls aligned to financial and banking requirementsStrengthened Security Posture: WAF + ALB and private subnets secure every transaction and data touchpointHigh Availability: Auto-scaling, multi-subnet architecture enables uninterrupted service continuity Operational Efficiency: Unified monitoring, alerting, and audit trails accelerate issue resolution and auditsFuture Scalability: Cloud-ready foundation for mobile banking expansion and AWS Direct Connect integration

 

Roadmap: Toward Intelligent Financial Mobility
  • Near Term:Launch new mobile banking application on the existing AWS foundationHarden CI/CD automation and IaC guardrails for faster, safer releases
  • Next Phase: Adopt AWS Direct Connect for predictable performance and securityExpand analytics and ML capabilities (e.g., fraud detection, anomaly scoring, and personalized experiences)

 

Conclusion

By modernizing on AWS with AIS Business, Deves Insurance has set a new benchmark for secure, resilient, and scalable digital insurance services in Thailand. The company now operates with greater confidence—protecting transactions and customer data while accelerating innovation. This transformation positions Deves to lead with trust, speed, and intelligence in an increasingly digital, always-on financial ecosystem.