Case Study: 3M achieves company-wide secure-coding proficiency with Checkmarx CxCodebashing

3M’s Developers Are Well Versed in Secure Coding Thanks to CxCodebashing

3M Health Information Systems needed a scalable way to ensure hundreds of developers learned secure coding while keeping pace with fast DevOps delivery and meeting strict healthcare compliance (HIPAA, HITRUST, ISO). The challenge was to provide mandatory, effective training that fit into busy development workflows rather than long, traditional courses.

3M integrated Checkmarx CxCodebashing with its existing CxSAST scans to deliver just‑in‑time, gamified, bite‑size lessons linked directly to findings, enforced during onboarding and sprint plans and supported by team managers and engagement tactics like competitions. The approach increased developer adoption, sped remediation of vulnerabilities, raised the team’s overall AppSec knowledge baseline, and strengthened the company’s compliance posture.

3M

Adam Bentley

Manager