Case Study: ACV Auctions achieves secure, continuous software innovation with Legit Security

ACV Auctions Uses Legit Security to Deliver Secure, Continuous Software Innovation

ACV Auctions, the wholesale automotive auction platform, needed to secure a fast-moving CI/CD-driven SDLC while supporting continuous innovation. Erik Bataller, VP of Information Security, leads a 15-person attack surface management (ASM) team responsible for organization-wide security for roughly 250 developers and sought enhanced observability, automated SDLC monitoring, vulnerability context, developer collaboration, and continuous compliance—requirements that led them to adopt the Legit Security platform.

Legit Security integrated quickly with ACV’s toolchain (e.g., GitHub and Jenkins) to provide end-to-end observability, real-time auditing and alerts, risk scoring, and automated workflows. As a result, the ASM and product security teams can triage vulnerabilities faster, improve developer collaboration, and continuously monitor compliance—delivering the same capabilities at a fraction of the cost of adding staff and replacing slow, manual audits with continuous, automated monitoring that significantly reduced operational effort.

ACV Auctions

Erik Bataller

Vice President of Information Security