The Next Applied
social share alt icon

A LEADING NORTH AMERICAN AIRLINES ACHIEVES 100% SAST COMPLIANCE WITH MPHASIS CYBER SECURITY REMEDIATION

CLIENT

 

One of the leading airlines in North America.


BUSINESS CHALLENGE


The client faced a high volume of critical and high-severity vulnerabilities across legacy applications, cloud workloads, and on-prem systems. Limited visibility into external attack surfaces increased exposure risks due to publicly accessible URLs across production and non-production environments. Inconsistent SAST/SCA onboarding and delayed DAST scanning cycles created compliance gaps against defined SLAs. Additionally, coordination across multiple teams for MFA/SSO enablement, UAL tagging compliance, and security agent deployment required streamlined governance and accountability.


To address this, the client aimed to initiate a comprehensive cybersecurity remediation program to eliminate critical and high-risk vulnerabilities across application code, cloud environments, and on-premise infrastructure. Their objective was to achieve 100% remediation of critical and high vulnerabilities within SLA while strengthening overall security posture and compliance standards.


SOLUTION

 

Mphasis’ remediation strategy prioritized immediate closure of critical and high-risk vulnerabilities across four domains: application security, cloud security, infrastructure security, and external attack surface reduction. The strategy included:


  • Onboarding 62 projects to SAST with 100% compliance
  • Enforcing 90-day DAST scanning cycles
  • Remediated WIZ-identified cloud issues
  • Deploying security agents with full UAL tagging compliance
  • Implementing Web Application Firewall (WAF) protections to restrict internet exposure for 28 applications across production, development, QA, and pre-production environments
  • ompleting a full MFA/SSO assessment

BENEFITS

Total On-Prem Vulnerabilities remediated: 4073

Total App. Code Vulnerabilities remediated and moved to Prod: 1225

735 App Code Vulnerabilities remediated in just 4 weeks

100% SAST onboarding and 100% SAST Compliance for 62 Projects