Case Study: CyberMDX achieves container security and open-source compliance with Mend

CyberMDX Secures Its Containers Using Mend

CyberMDX is a New York–based IoT security company that protects medical device ecosystems and delivers agentless, cloud-based cybersecurity. Because their product is fully containerized and deployed across on‑premises and diverse cloud environments, CyberMDX needed strict open source license and vulnerability controls; their previous SCA tool lacked the flexibility to enforce nuanced policies across multi‑tenant, on‑prem and cloud contexts.

CyberMDX integrated Mend into their Bitbucket Cloud CI to scan code on every pull request before Docker images are built, applying fine‑grained policies that automatically block builds with disallowed licenses or vulnerabilities. This CI enforcement shifted security to developers early in the SDLC, reduced risk and remediation time, saved significant developer hours and costs, and gave the team greater confidence and control over open source use.

CyberMDX

Gil Regev

Vice President of Research and Development