Case Study: SoFi boosts development velocity and reduces application risk with Apiiro

How SoFi empowers development velocity while reducing application risk

SoFi, a digital financial services company, needed to balance rapid development with strong application security across 2,000+ developers and 5,200+ repositories. Its AppSec team wanted better visibility into application risk, more efficient security reviews, and a way to focus on the most business-critical issues without slowing developer velocity. Apiiro’s ASPM platform was selected to help address these challenges.

Using Apiiro, SoFi gained an exhaustive inventory of applications, technologies, APIs, code changes, secrets, and vulnerabilities, along with continuous risk analysis and policy-driven workflows. The result was a major reduction in manual effort: security design review analysis dropped from hours to 5–15 minutes, and mean time to remediation improved from 8 days to 10 minutes. Apiiro also gave SoFi near-instant visibility across its application portfolio, helping the team reduce risk more efficiently.

SoFi

Zach Schulze

Senior Staff Application Security Engineer