start portlet menu bar end portlet menu bar
Success Stories Search
Success Stories Filter
Restful
3M Story
VELCO
Firepro Systems
European Cricket Network
Global Safe Travel
volt-mx-state-government
WWE
Volt MX Government
Anonymous Retail Customer Story
KUHN
Commerce Retail
Bonnell Aluminium
PD Hook
Ambleglow
Novotex Italiana
Streebo
Penn Vet
Iperceramica
A1 Telekom
Swiss Red Cross
Arvid Gjerde
Vössing spurs efficient
acubiz story
Pakistan State Oil
TATA AIA Insurance
Global Information Technology
Power Metal
Augusta
State of Ohio
Verve
Afrisam Paves
vcc
bcbst
Corlett-Wellstone
Elektronabava-1
Global Marketing and CPG
HCL Volt MX Insurance Demo
HCL Volt MX
National Retailer
Cyber Security
Health Insurance Company
Electric Utility Company
Credit Union
Türk Telekom
HCL AppScan Telecommunication
HCL AppScan IT Customer Story
DX Insurance
DX Bank
HCL Accelerate IT
dryice-enables-automated
dryice-reduces-vm
dryice-german-energy
dryice-reduced-server
Exacto enables smart data
Exacto kicks automation into overdrive
Exacto Learn how Husqvarna mowed-down
Marzotto Sim
Nolte Kuchen
HCL AppScan Education
ESM
Connectria
AIS | HCL Software
Low Code Chemical
Australian Energy company
Rheavendors Group
Malayala MANORAMA
Higher Education Logo Page
Al-Futtaim
Volt MX Government Services
Volt MX Utility Water
DX Edison
DX Ipiranga
VMX Pestcontrol
South Seas Data
Lufthansa
US State Government-1
Top Global Manufacturer
Wavestrong Partner Success Story
Z Home Auto Insurance
Mondelez International
Major Restaurant Franchises
BMO
Energy DX
Technology Company DX
Biopharmaceutical Company DX
Healthcare Insurance Nippon
DX Grocery
Domino Boge
Aeronautic Onetest Embedded
Dportenis
BigFix Reynolds
Neovad Bigfix
Aftermarket Cloud FSM Offhighway
Aftermarket Cloud Robotics
Aftermarket Cloud Bus Manufacturer
Aftermarket Cloud Construction
Advancing Avionics DevOps Test
  • Contact us

    • What we achieved

    • Reduced risk

    • Lowered costs

    • Improved efficiency

    To who

    • Industry: Telecommunication

    • Products: HCL AppScan

    • Region: North America/US

    Overview

    • Part 1

      Challenge

      The client was faced with the following challenge: Being able to test roughly 4,000 applications, both employee and customer-facing. The client also needed to verify post-development that their applications had been developed securely, without security gaps that could potentially lead to breach vectors within the enterprise.
    • Part 2

      Solution

      HCL offers several commercial options to meet clients’ licensing needs, and they are either SaaS-based or on-prem-based. A workshop was initiated to understand the client’s requirements, their current state and their aspirational state. We architected a solution to meet the client’s needs with HCL AppScan Enterprise, our on-premise dynamic application security testing solution.
    • Part 3

      Results

      The client realized greater value through our ability to act as a trusted advisor in developing an end-to-end solution to meet their needs. We established a true partnership and stayed synchronized throughout strategic roadmap updates, where we discussed our latest research and development efforts and sought input and validation about HCL’s progress in meeting the future needs of the client and the industry.

    The Challenge

    Overview

    Our client is one of the world’s largest telcos and they offer the following services: mobile, 5G, internet and networking, IoT, Voice and collaboration, cybersecurity, cloud, content and entertainment and digital capabilities.

    The 4 challenges they faced were:

    1. Concern with their existing enterprise production application infrastructure’s vulnerability to attacks.
    2. Existing tools were slow and difficult to manage, because of the large scale of their applications.
    3. Existing tools did not support modern web applications, such as new languages and web application frameworks and technologies that they were developing.
    4. Existing tools could not be automated to plug into their continuous integration pipeline.

    As a result, they were looking for a more sophisticated application security platform that could support today’s modern web applications technologies such as secure APIs and new application frameworks such as reactJS. They were also looking for a solution that offered enterprise-class scalability without slowing them down and the ability to handle large amounts of data, along with integration into their DevOps pipeline. That would enable our client to scan consistently and frequently, so vulnerabilities could be caught earlier in the lifecycle, resulting in lower development costs. Such an approach also reduced overhead, since a lot of the testing could be automated, with a significant reduction on teams’ requirements to manage testing.

    The Solution

    Scaling up and optimizing customer experiences

    AppScan Enterprise allows the client to test their modern web applications, analyze their entire applications for accurate results and have the confidence that the platform is testing their applications against an extensive list of vulnerabilities to confirm that applications are secure. Our solution was able to scale up to the client’s large workload, integrate into their DevOps pipeline to be able to incorporate their dynamic application testing into their software development lifecycle, while meeting their requirements for optimized development practices that incorporate security as foundational.

    • The HCL application security team, comprised of lab services and advocacy, established a center of excellence that would provision the enablement materials and best practice approaches for use of AppScan Enterprise. This was a critical element to leverage productive use and master functionality of the platform. It would establish the prerequisite skills to onboard and ramp up a consistent and optimized use of the tools and ensure desired standards, governance and outcomes.
    • In addition, we integrated AppScan Enterprise into the client’s DevOps pipeline, enabling dynamic application security testing more frequently and consistently. This helped in the process of shifting left, by incorporating security earlier in the software development lifecycle, in order to catch and fix vulnerabilities more effectively. We also developed a process to capture metrics on applications that enabled transparency to the quality of the scans based on breadth, scope and a few other scan factors. Additional benefit was realized on visibility into the risk posture of every application we tested, specific vulnerabilities that affected each application tested and whether vulnerability remediation was addressed.

    The Results

    Synchronizing between roadmaps

    The client realized greater value through our ability to act as a trusted advisor in developing an end-to-end solution to meet their needs. We established a true partnership and stayed synchronized throughout strategic roadmap updates where we discussed our latest research and development and sought input and validation of HCL’s progress in meeting the future needs of the client and the industry.

    The solution we architected and implemented to roll out a dynamic application security testing program added value in the following ways:

    • Improved efficiency by allowing the client to scale up a large number of applications that needed to be tested and evaluated.
    • Shifted Development left to run scans earlier and more frequently in the software development lifecycle (SDLC), which allowed our client to catch security vulnerabilities earlier. As a result, it reduced development costs.
    • Enabled the capture of more metrics, which resulted in more informed business decisions.

    About the company

    The company offers broadband connectivity and high-speed fiber and wireless networks that connect people and businesses across the USA.

    Download Story

    Related Capabilities

    digital transformation case

    Business & Industry Applications

    Robust business applications designed to set a new benchmark in organizational efficiency. Encompassing marketing, e-commerce, value chain, and behavioral insights.

    Learn more
    automation solution

    AI and Intelligent Operations

    AI and automation combined with simplicity, security and ease of use — empowering you to make informed decisions, predict market trends and enhance agility and efficiency to an unprecedented degree.

    Learn more
    enterprise it security

    Total Experience

    TX software that interconnects the best to solve the most complex challenges organizations face, incorporating customer experience (CX), employee experience (EX), user experience (UX) and multi-experience (MX).

    Learn more

    Data and Analytics

    The tools you need to distill complex data into clear, actionable insights — to predict outcomes, profile customers, optimize operations and identify new opportunities through data patterns and market analysis.

    Learn more

    Cybersecurity

    Vulnerability detection, mitigation and remediation solutions that deliver secure DevOps and compliance from application to endpoint.

    Learn more