Introduction:
Protectt.ai is India’s first Next-Generation Mobile Security platform, utilizing AI/ML to protect mobile apps, devices, and real-time transactions. Through flagship products like App Protect™ and Real Time Protect™, they provide a critical security layer for enterprise ecosystems. Operating as a 24/7 multi-tenant platform (supporting four distinct production tenants), Protectt.ai is the frontline of defense against mobile fraud for millions of users.
Client:
Protectt.ai
Industry:
Cyber Security / AI / ML
Offering:
Backup & Restore DR (Cross-Region)
AWS Services:
- RDS PostgreSQL (Cross-Region Replica)
- CloudFormation
- AWS Lifecycle Manager
- AWS Backup
- GuardDuty
- CodePipeline
The Challenge:
As a cybersecurity leader, Protectt.ai operates under the strict scrutiny of CIS, NIST, and AWS Foundational compliance. They needed a Disaster Recovery (DR) solution that could protect all four production tenants across regions (Mumbai → Hyderabad) but faced a common C-suite dilemma:
- The Compliance-Cost Paradox: They required enterprise-grade failover (RTO < 1 hour) but sought to avoid the high “steady-state” costs of keeping a full duplicate environment running.
- Multi-Tenant Complexity: The solution had to ensure consistent backup and recovery logic across four separate production environments (T1–T4) simultaneously.
- Regulatory Documentation: Every drill required exhaustive, timestamped evidence to satisfy cybersecurity audits.
Solution Approach:
Rapyder architected a Backup and Restore DR Strategy – the ultimate “Budget-Smart” resilience model. Unlike “Warm Standby,” this approach eliminates ongoing compute costs by keeping the DR region “dark” until activation. We leveraged Automated AMI Lifecycle Management and RDS Cross-Region Read Replicas to ensure data was always present in Hyderabad, while the infrastructure itself remained dormant until a failover was triggered.
Implementation:
Rapyder streamlined the DR lifecycle through a “Dark Site” architecture that springs to life on demand:
- On-Demand Infrastructure (IaC): Utilized AWS CloudFormation to provision ALBs, security groups, and listeners only at the moment of activation, ensuring zero cost during normal operations.
- Continuous Data Sync: Established an RDS PostgreSQL Cross-Region Read Replica to maintain a 30-minute RPO for a massive 2,283 GB database.
- Automated Image Lifecycle: Deployed AWS Lifecycle Manager to automate AMI creation and cross-region copying for all production servers, ensuring a “gold image” is always ready in Hyderabad.
- Zero-Touch Deployment: Integrated AWS CodePipeline to automate application deployment upon failover, removing the risk of manual error.
- 24/7 Vigilance: All alerts—from replication lag to CPU thresholds—are monitored via Rapyder’s 24/7 Cloud Command Centre.
The Business Impact: Impact Engineered by Rapyder
The Q3 2025 live DR drill demonstrated that a “budget-conscious” strategy does not mean sacrificing speed:
-
- 2x Faster Recovery: Achieved an RTO of 30 minutes, outperforming the 1-hour target by 50%.
- Maximum Cost Efficiency: Eliminated 100% of idle EC2 costs in the DR region; the client only pays for storage and the minimal database footprint.
- Audit-Ready Compliance: Successfully met CIS and NIST requirements through documented quarterly drills and automated GuardDuty/CloudTrail audit trails.
- Universal Tenant Protection: Verified successful failover for all four production tenants (T1–T4), ensuring no client environment was left vulnerable.
