Skip to main content Skip to footer
Case Study

Operational support for infrastructure vulnerability management and implementation of container security solution

  • Cyber Security
  • Cloud Security
  • Infosys Cloud Ecosystem Hub

The client is an investment companies. They were facing issues in scanning the entire asset landscape due to non- existence of asset inventory. There was no solution for container security.

Infosys helped them to revamp their vulnerability management process and provided effective remediation governance. And also implemented container security solution using Prisma Cloud compute (TwistLock) tool.

Key Challenges

  • Incomplete asset scanning coverage due to absence of single source of in-scope asset inventory
  • Manual tracking of vulnerability exception deviation and false positive handling leading to increase in efforts and cost
  • Unauthenticated scan and other authentication scan issues leading to multiple hidden vulnerabilities
  • Manual creation and sharing of vulnerability scan reports to stakeholders
  • No vulnerability prioritization based on asset criticality
  • No solution implemented for container security
Talk To Experts

The Solution

Regular scanning and elimination of vulnerabilities

Performed inventory reconciliation and host discovery scan to increase asset scanning coverage to 100%

Revamped client’s vulnerability management processes and provided effective remediation governance

Recommended automated tracking of vulnerability exception deviation and false positive handling

Increased vulnerability identification post full scan coverage and reduced scan issues

Recommended to leverage tenable dashboards to provide a real time visibility of vulnerabilities

Implemented vulnerability prioritization based on asset criticality

Implemented container security solution using Prisma Cloud Compute (TwistLock) tool and integrated with DevSecOps

Benefits

Reduction in overall vulnerabilities

100% asset scanning coverage

Thousands of unidentified vulnerabilities discovered by successful authenticated scans

Improved vulnerability management process with exception forms and multistage false positive reviews

Improved remediation percentage from 60% to 90% post periodic governance meetings

Periodic scanning and remediation of all container images in dev, QA and prod environment as per defined SLAs

Request for services

Find out more about how we can help your organization navigate its next. Let us know your areas of interest so that we can serve you better.

All the fields marked with * are required

You must read and agree to the Privacy Statement before submitting
Please fill all required fields

Thank you for connecting with us. We will respond to you shortly.