2. Like what you see? Let's talk

The client is an investment companies. They were facing issues in scanning the entire asset landscape due to non- existence of asset inventory. There was no solution for container security.

Infosys helped them to revamp their vulnerability management process and provided effective remediation governance. And also implemented container security solution using Prisma Cloud compute (TwistLock) tool.

Key Challenges

  • Incomplete asset scanning coverage due to absence of single source of in-scope asset inventory
  • Manual tracking of vulnerability exception deviation and false positive handling leading to increase in efforts and cost
  • Unauthenticated scan and other authentication scan issues leading to multiple hidden vulnerabilities
  • Manual creation and sharing of vulnerability scan reports to stakeholders
  • No vulnerability prioritization based on asset criticality
  • No solution implemented for container security
TALK TO EXPERTS
Line

The Solution

Regular scanning and elimination of vulnerabilities

  • Performed inventory reconciliation and host discovery scan to increase asset scanning coverage to 100%
  • Revamped client’s vulnerability management processes and provided effective remediation governance
  • Recommended automated tracking of vulnerability exception deviation and false positive handling
  • Increased vulnerability identification post full scan coverage and reduced scan issues
  • Recommended to leverage tenable dashboards to provide a real time visibility of vulnerabilities
  • Implemented vulnerability prioritization based on asset criticality
  • Implemented container security solution using Prisma Cloud Compute (TwistLock) tool and integrated with DevSecOps
Line

Benefits

Reduction in overall vulnerabilities

100% asset scanning coverage

100% asset scanning coverage

Thousands of unidentified vulnerabilities discovered by successful authenticated scans

Thousands of unidentified vulnerabilities discovered by successful authenticated scans

Improved vulnerability management process with exception forms and multistage false positive reviews

Improved vulnerability management process with exception forms and multistage false positive reviews

Improved remediation percentage from 60% to 90% post periodic governance meetings

Improved remediation percentage from 60% to 90% post periodic governance meetings

Periodic scanning and remediation of all container images in dev, QA and prod environment as per defined SLAs

Periodic scanning and remediation of all container images in dev, QA and prod environment as per defined SLAs