Case Study: Best Buy achieves 80% fewer false positives with Checkmarx One

How Best Buy Reduced False Positives by 80%

Best Buy, one of North America’s largest retail tech environments, faced the challenge of securing thousands of microservices, 8,000 repositories, and 3,000+ engineers across 300 application teams without slowing development. The company needed a modern AppSec platform that could fit developer workflows, deliver accurate results quickly, and consolidate SAST, SCA, secrets detection, and governance tools. Best Buy turned to Checkmarx and its Checkmarx One platform to address this scale and complexity.

With Checkmarx One, Best Buy centralized scanning, triage, and remediation across CI/CD pipelines, while improving developer experience and simplifying its toolset. The result was a powerful reduction in noise and overhead: Best Buy cut false positives by 80% and enabled 27,000 monthly scans across thousands of pipelines, helping more than 3,000 engineers ship software faster and more securely.

Best Buy

Matthew Hurewitz

Director, Platforms and Application Security