Module · 02i · Platform Ops
Platform Operations
Multi-tenancy, role-based access with maker-checker, immutable audit, open APIs, certifications, entitlements and billing, and disaster recovery — the plumbing that makes the platform licensable.
Tenants
4
1 house + 3 client
Users
105
55 roles
Audit events 24h
38,412
hash-chained
Uptime 90d
99.987%
DR tested Q1
Certifications
SOC 2 II · ISO 27001
next audit Q4
RBAC — roles & permissions
| Role | Users | Permissions |
|---|---|---|
| Portfolio Manager | 12 | order.create, model.read, research.write |
| Trader | 8 | order.create, order.route, allocations.read |
| Compliance Officer | 4 | rule.write, breach.resolve, audit.read |
| Operations | 14 | trade.lifecycle, ca.process, nav.review |
| Fund Accountant | 6 | nav.strike, gl.post, audit.export |
| Client Service | 9 | crm.write, report.publish, portal.invite |
| Admin | 2 | tenant.* (break-glass, audited) |
Tenants & entitlements
| Tenant | Users | AUM | Plan |
|---|---|---|---|
| Horizon AM (house) | 92 | $792M | Enterprise |
| Aurora Family Office | 6 | $218M | Pro |
| Meridian Treasury | 4 | $65M | Pro |
| Kestrel Anchor LP | 3 | $50M | Starter |
Per-tenant data partition · per-module entitlement flag · usage billed monthly (bps of AUM / API calls).
Audit log (live)
| Time | User | Action | Target | IP |
|---|---|---|---|---|
| 14:08:12 | f.lim | order.create | ORD-90215 | 10.42.1.18 |
| 14:07:54 | r.said | rule.write | R5-restricted-defence | 10.42.3.21 |
| 14:07:30 | ops-1 | nav.strike | JMF 2026-06-15 | 10.42.2.04 |
| 14:06:11 | p.tan | crm.write | C-003 mtg note | 10.42.1.40 |
| 14:05:02 | admin | role.assign | u-882 → Compliance | 10.42.0.02 |
Open APIs
| Endpoint | Calls 24h | p95 |
|---|---|---|
| REST · /v1/positions | 412K | 42ms |
| REST · /v1/orders | 118K | 61ms |
| GraphQL · /graphql | 84K | 88ms |
| Webhook · trade.settled | 12K | — |
| FIX 4.4 sessions | 11 up | — |
Compliance & resilience posture
SOC 2 Type II
Clean opinion · ACA Group · valid to 2027-Q1
ISO 27001
Certified · BSI · next surveillance Q3
Encryption
AES-256 at rest · TLS 1.3 in transit · KMS with HSM
Maker-checker
Enforced on order, nav, IMA, role changes
DR / BCP
Active-active SG/EU · RPO 5 min · RTO 30 min · tested 2026-Q1
Pen test
Annual · NCC Group · 0 critical, 2 medium remediated
Data residency
SG, EU, US tenancies — no cross-border replication
Status page
status.horizon.example · 99.987% rolling 90d