Case Study: Playtech achieves accurate, scalable SAST and faster remediation with Checkmarx

Playtech Deploys SAST in a Complex Dev Environment

Playtech, a global leader in online gaming software with more than 1,000 R&D developers and millions of lines of code across many languages, faced the challenge of enforcing application security across a fragmented, rapidly growing codebase and strict regulatory requirements (ISO 27001, PCI DSS). They needed a SAST that could run during development (not just on compiled builds), deliver accurate results at scale, and be easily customized to enforce their internal security policy.

Playtech deployed Checkmarx, starting with small projects and expanding to scan over 90% of their portfolio, using IDE plugins and custom queries to integrate security into the SDLC. The solution delivered fast, accurate scans without compilation, automatic JIRA ticketing for medium/high findings, and immediate developer feedback—reducing remediation effort, improving secure coding practices, and helping meet regulatory and internal security standards.

Playtech

Kobi Lechner

Information Security Manager