CONFIDENTIAL designator Microsoft Azure Red Hat OpenShift Managed Service Deployment Journey 1

2 Speakers Renato Bettini Container Platform Engineering Specialist Bradesco João Carlos Peixoto Senior Managed Services Black Belt Red Hat Filipe Caló Associate Principal Solutions Architect Red Hat

3 + 90 K Employees US$ 1.2 bi Invested in Technology/2022 Founded in 1943 77 mi Customers + 7 K Branches Pas/UNs US$ 1.7 bi Recurring Net Profit 1S23 About Bradesco | Overview US$ 380 bi Total Assets

Large distribution network in Brazil and abroad 4 Brasil About Bradesco | Physical Presence

5 2 bi interactions with BIA since its launch. 98 % Transactions were made on Digital Channels 94 % concentrated on Mobile and Internet + 15 mi transactions a day NP channel 84 mi requests a day 57 % growth in financial transactions on mobile About Bradesco | Digital Channels

6 2 datacenters, supporting and maintaining the entire infrastructure Around 56 hours to provision new clusters.... Applications not synchronized for capacity purposes... According to the project capacity, it was necessary to purchase hardware Self-Managed environment All infrastructure was self-managed by the bank team. Updates frequently required. How where we one year ago? Large on-premise infrastructure Limited resources based in HW acquisition High time to deliver new on-premise clusters Active / Standby Topology

7 2 hours to provisioning new clusters.... Cloud Managed environment Large hybrid infrastructure Elastic resources in a PAYG consumption model Short time to deliver new clusters Active / Active Topology Where we are today

How was our Journey?

Agile Delivery - Infrastructure as code - Self service catalog 9 Scalability - Meet the size or volume according to demand / requests - Automatically increase or decrease infrastructure High Availability - Distributed components across availability zones Security - Meet all requirements and security definitions of the company Managed Platform - Reduce effort on self-managed infrastructure Key points required and target

Networking • Address Spaces • Load Balancers • Internet Access • DNS We have jointly agreed in a proof of concept to have a better understanding of Openshift Managed Services in Azure 10 Compute • Instance Types • Compatibilities • Autoscaling Automation • Terraform • ARM Template • AZ CLI • Ansible • Integrations Security • Key Vault • Certificates • Cryptography • Backup • Cybersecurity Frameworks (NIST) • Authentication • Vulnerabilities • RBAC • NSG Storage • Disk types • Storage Classes • Replication Monitoring Governance • Tags • FinOps • Shared Responsabilities Capacity Operations The journey

11 Networkin g Storage Compute Automatio n Security Governanc e Capacity Monitoring Operation s “ARO DAY” schedules The journey

12 The time taken to deliver one cluster 100% configured according to our standards is now 2 hours per cluster Agile Delivery The journey | Addressing challenges and targets

13 Managed Platform On-demand Scalability High Availability Scalability High Availability Managed Platform The journey vs Challenges/Targets

14 Security Compliance with more than 150 k8s security configurations according NIST 800-53 Azure Key Vault Integration Daily Backups using OADP Operator The journey vs Challenges/Targets

Security OpenID Authentication + RBAC OpenID for authentication and OpenShift RBAC for authorization access in clusters All managed disks are encrypted Encryption All clusters are monitored by Microsoft Defender The journey vs Challenges/Targets

16 • 96% of time reduction in provisioning new clusters • More than 40 clusters already deployed • More than 2000 vCPUs allocated • Zero downtime of platform services • No blocking due to lack of computing resources (capacity) 96% of time reduction more than 40 clusters and 2000 vCPU’s Results after 1 year results

+ 880 k peak requests /min 40 clusters in cloud + 3 k deployments + 30 k PODs + 2 k nodes + 526 mi record number of requests /day 80 clusters onprem Current status

Increase cloud services consumption Keep improving agile delivery Increase managed environments Decrease Self-Managed environments Future

CONFIDENTIAL designator linkedin.com/company/red-hat youtube.com/user/RedHatVideos facebook.com/redhatinc twitter.com/RedHat 19 Red Hat is the world’s leading provider of enterprise open source software solutions. Award-winning support, training, and consulting services make Red Hat a trusted adviser to the Fortune 500. Thank you