Case Study: Société Française du Radiotéléphone (SFR) achieves early vulnerability detection and faster remediation with Black Duck

SFR - Customer Case Study

Altice Europe’s SFR B2C IT division, which serves 23 million customers, needed to make application security part of development from the start. With dozens of major web, front-end and office projects deployed each year, SFR sought a dynamic, CI/CD-friendly scanner to reduce vulnerabilities and customer impact, enable developers to find and fix bugs early in the SDLC, lower false positives compared with classic SAST, and improve cross-functional collaboration and remediation speed.

SFR selected Synopsys Seeker IAST, which integrates into CI/CD pipelines to detect high‑risk web application weaknesses during code execution, verify findings in real time, and provide exact code locations and remediation guidance. While roll‑out is ongoing (about a dozen on‑prem apps are tested daily today, scaling to several dozen), SFR already reports better detection than SAST, fewer false positives, and greater developer empowerment and productivity when addressing security issues.

SFR

Robert Cohen

Validation & Security Director