Company Overview
- Leading US-based auto loan refinance provider
- 2M+ applications monthly
- $1B annual revenue
Tech Overview
- 1M Customers
- 1k+ Operations team
- 500+ Lender network
Business & Technical Challenges
- Protection from rising cyber-attacks and data theft in the finance industry
- Development of a security-first mind-set to build secure applications from day-one
- Set-up of security systems historically an after-thought
- Frequent manual customization needed for existing vulnerability management tools that relied on an old, rules-based architecture that required frequent manual customization
- Conducted a comprehensive risk assessment, built robust threat modeling and established framework for secure software development
- Designed/developed a web-based threat modeling tool with an intuitive user interface, aligned with their enterprise architecture
- Automated and standardized the info sec risk assessment processes
- Customized existing code quality monitoring tool & security testing workflows to enable early detection of security issues during the application lifecycle
- Developed secure coding rules and defect remediation guidelines
- Developed a powerful AI-based algorithm to determine the risk ranking of various applications based on multi-factor analysis
- Trained app developers on the new development framework
- Significant improvement in enterprise-wide security posture
- Achieved zero-defect goal for secure applications and identified defects in early stages of the SDLC
- Accelerate time to market
- 60% reduction in IT risk management spend and 35% reduction in application development time
- Streamlined security management across all applications and reduced time on security operations
- Standardized application risk assessment framework & greater visibility into the enterprise-wide security status
