Case Study

Operational support for infrastructure vulnerability management and implementation of container security solution

The client is an investment companies. They were facing issues in scanning the entire asset landscape due to non- existence of asset inventory. There was no solution for container security.

Infosys helped them to revamp their vulnerability management process and provided effective remediation governance. And also implemented container security solution using Prisma Cloud compute (TwistLock) tool.

Key Challenges

Incomplete asset scanning coverage due to absence of single source of in-scope asset inventory
Manual tracking of vulnerability exception deviation and false positive handling leading to increase in efforts and cost
Unauthenticated scan and other authentication scan issues leading to multiple hidden vulnerabilities
Manual creation and sharing of vulnerability scan reports to stakeholders
No vulnerability prioritization based on asset criticality
No solution implemented for container security

TALK TO EXPERTS

The Solution

Regular scanning and elimination of vulnerabilities

Performed inventory reconciliation and host discovery scan to increase asset scanning coverage to 100%
Revamped client’s vulnerability management processes and provided effective remediation governance
Recommended automated tracking of vulnerability exception deviation and false positive handling
Increased vulnerability identification post full scan coverage and reduced scan issues
Recommended to leverage tenable dashboards to provide a real time visibility of vulnerabilities
Implemented vulnerability prioritization based on asset criticality
Implemented container security solution using Prisma Cloud Compute (TwistLock) tool and integrated with DevSecOps

Benefits

Reduction in overall vulnerabilities

100% asset scanning coverage

Thousands of unidentified vulnerabilities discovered by successful authenticated scans

Improved vulnerability management process with exception forms and multistage false positive reviews

Improved remediation percentage from 60% to 90% post periodic governance meetings

Periodic scanning and remediation of all container images in dev, QA and prod environment as per defined SLAs

Experience

Insight

Innovate

Accelerate

Assure

Application Development and Maintenance

Business Process Management

Consulting Services

Incubating Emerging Offerings

Operational support for infrastructure vulnerability management and implementation of container security solution

The Solution

Benefits

Reduction in overall vulnerabilities