Case Study: National Energy Operator achieves secure, scalable DevSecOps and $4M annual savings with JFrog

National Energy Operator’s Journey to DevSecOps Excellence with JFrog

A national energy operator responsible for the country’s electricity and gas markets—managing supply, trading, outages and critical grid operations—faced growing pressure to scale software delivery across 400 production applications and 100+ developers. Manual build-and-deploy processes, legacy systems, security gaps and knowledge silos led to ad‑hoc releases, slow vulnerability response, rollbacks, missed deadlines and unacceptable risks for critical infrastructure.

The organization adopted the JFrog Platform (Artifactory, Xray, Pipelines, Advanced Security and Curation) to create a single system of record, automate pipelines and embed security throughout the SDLC. The result: repeatable, auditable releases with contextual vulnerability analysis and proactive blocking of risky packages, enabling over 3,000 pipelines under management, prevention of thousands of unsafe downloads (1,000+ proactive blocks), and roughly $4M in annual savings while greatly improving traceability and operational resilience.