DPoD is a cloud-based security platform by Thales that provides cryptographic key management and HSM services for enterprise customers. As the platform scales, it increasingly serves organizations with complex operational and governance requirements, but lacked structured approval workflows for sensitive operations, allowing critical actions to be executed by a single administrator and creating security and accountability risks.
To address this, we introduced a Quorum system that enables multi-party approval for high-risk actions, with the goal of designing a scalable governance mechanism that strengthens security while integrating seamlessly into existing workflows.
As adoption grew, enterprise customers raised concerns about missing governance controls, as high-impact actions such as key operations could be executed without validation or oversight. This created operational risk and limited traceability in distributed environments, where customers expected built-in approval workflows, auditability, and visibility. These insights highlighted the need for a structured system to enforce multi-party decision-making within the product.
Quorum was designed as a governance layer embedded within DPoD rather than a standalone feature. I analyzed existing workflows to identify gaps in approval logic and collaborated with PMs and engineers to define quorum rules, triggers, and system feedback. To accelerate exploration, I also used AI-assisted design workflows in Figma Make to generate early concepts and interactions, which were then refined using the DPoD design system to ensure consistency and feasibility.
This feature was informed by enterprise customer feedback collected by PMs, as well as internal discussions with engineers and stakeholders, where customers consistently highlighted the need for multi-party approval, accountability, and auditability for sensitive actions. Rather than managing approvals externally, they expected these workflows to be built directly into the platform.
Working with product managers and engineers, we defined how Quorum integrates into the platform through a role-based structure, introducing a structured approval system with clear responsibilities across policy setup, request execution, approval, and system communication to enable scalable governance without adding complexity.
Based on the feature set, I mapped key workflows covering the full lifecycle of a protected action, clarifying how decisions are created, reviewed, and executed within the system.
To explore interface directions, I used Figma Make with structured prompts based on features and user flows, grounded in the design system, to generate multiple UI variations for approval workflows and dashboards, expanding the design space and providing a starting point for refinement.
AI-generated concepts were refined using the DPoD design system by incorporating design documentation and UI kit patterns to align layouts, standardize components, and match existing interaction behaviors, transforming exploratory ideas into production-ready designs.
I developed high-fidelity prototypes to define the full quorum workflow, refining layouts, standardizing components, and optimizing interactions for clarity. Using Figma Make, I also generated interactive behaviors to simulate realistic workflows and enable actionable stakeholder feedback.
Core Interfaces:
Prototypes were tested with PMs, engineers, and selected users in real-world scenarios to validate usability and workflows. Feedback surfaced key gaps in flexibility and clarity:
In response, I introduced editable policy configurations and more flexible execution options, while refining layouts to better highlight critical information such as approval progress. These iterations improved usability, reduced cognitive load, and enabled more scalable governance workflows.
The final Quorum system introduces structured approval workflows into DPoD, enabling administrators to define approval rules, track progress in real time, and maintain full audit trails, while seamlessly integrating into existing workflows to improve visibility and governance.
As one of the largest feature initiatives I have worked on at Thales, Quorum gave me the opportunity to contribute across the full design process—from early requirement exploration to final delivery—while balancing security, governance, and usability.
It also marked our team’s first integration of AI-assisted design tools. Using Figma Make helped me explore concepts faster, communicate interactions more clearly, and create a more efficient design-to-engineering handoff.
Delivered over a 12-month initiative and launched in March 2026, Quorum became a core governance capability within DPoD, addressing enterprise demand for secure multi-party approvals and stronger operational accountability.
The feature received strong positive customer feedback and supported adoption and retention among organizations with strict security and compliance requirements. It aligned with significant product growth and contributed to an estimated $200M revenue impact in Q1 2026.