State-of-the-art analysis and reporting of security vulnerabilities and risks for a global energy provider
Expert Thinking delivers a modern Azure data solution to a global energy provider. Working collaboratively with Riversafe (https://riversafe.co.uk/), we developed a DevSecOps security vulnerability analysis and reporting application providing our customer with a consolidated view of security vulnerabilities and risks across all in-scope applications and DevOps pipelines that enabled our customer to pro-actively reduce their threat landscape.
Our customer needed to establish a consolidated view of their security and risk position across application code and their DevOps pipelines using proprietary outputs from multiple security and code scanning tools. Specific challenges included:
Expert Thinking, working closely with RiverSafe, delivered the end-to-end solution from the ground up (MVP within 10 weeks). We led the platform architecture design, complex data modelling, engineering the solution end-to-end across platform, analytics and reporting. Key activities included:
We successfully delivered a dynamic, powerful data platform and analytics solution that provided consolidated, informed and insightful reporting of the security and risk position across all in-scope applications and DevOps pipelines, resulting in: