Ascentium · 2025 to present
Smart Onboarding
The front door of the client lifecycle: onboarding, screening, and approval in one secure flow.
Anonymised. Client names and operational detail withheld.
Role
Full-stack Developer
Year
2025 to present
Stack
- React
- Vite
- TypeScript
- .NET 9
- SQL Server
- Microsoft Graph
- Azure AD
- Docker
- Azure Kubernetes
- Azure DevOps
Overview
A client onboarding and KYC/AML compliance platform that generates onboarding forms, runs sanctions and screening checks, and posts approved records into the firm’s systems of record. I worked full-stack on integration engineering, a migration to a new intake pipeline, and security hardening.
Challenge
- Modernise a compliance-heavy onboarding flow without losing auditability or regulatory rigour.
- Migrate from a legacy KYC intake to a new onboarding pipeline while both ran in parallel.
- Harden authentication and the API surface.
Approach
- Built a background polling worker and an encrypted-token API client for the new intake pipeline.
- Implemented approved-record posting to the master-data system and document upload via Microsoft Graph.
- Migrated to Azure AD / MSAL auth and added rate limiting, security headers, and gateway second-layer auth.
Outcomes
- Shipped a dual-path migration that let the legacy and new intakes coexist safely.
- Tightened the platform’s security posture across authentication and the API surface.
- Kept a complex, regulated onboarding flow legible for compliance and relationship-management users.
Curious about the longer version, or the parts that didn't make the page? I'd be happy to talk it through. Get in touch