Case Study: Centrica achieves faster, secure CI pipelines and reduced costs with Kiuwan SAST

Introducing Kiuwan to the Software Development Life Cycle increased the productivity of the development team, all with minimal startup and platform maintenance costs

Centrica plc, a British multinational energy and services company, needed to embed security into a large, fast-moving development organization—750+ developers and over 1,000 pipelines—while supporting B2C and B2B applications and an agile daily release cadence. To achieve a collaborative, hybrid DevSecOps approach without slowing releases, Centrica selected Kiuwan’s SAST and SCA solutions and added them as a quality gate within its CI pipeline.

Kiuwan implemented a two‑pronged solution: a Docker container injected into pipelines for immediate code analysis and a centralized Kubernetes cluster for scalable scans (with ephemeral containers to avoid bottlenecks), plus centralized dashboards and custom reporting. Kiuwan’s deployment triggered an enterprise SSDLC rollout and delivered measurable benefits: increased developer productivity, faster response times, reduced development and startup costs, personalized security standards and governance, a low false‑positive rate, and the ability to run security scans across the large pipeline estate without slowing releases.

Centrica

Lewis Brammfit

Centrica