Case Study: Multi-National Tech Organization reduces product security risk with NCC Group SDL consultancy

Multi-National Tech Organization - Customer Case Study

Multi-National Tech Organization, a multi-national technology company, worked with NCC Group to assess the security of its new smart TV product line ahead of a critical Christmas launch. The challenge centered on a complex development lifecycle that mixed waterfall and agile methods, while still relying on open-source Android-based code and managing legal and security risks tied to third-party components and DRM requirements.

NCC Group provided Secure Development Lifecycle (SDL) consultancy, reviewing open-source and Android-related code, recommending Software Composition Analysis (SCA) tools, and advising on process, technology, and training improvements. NCC Group also identified a device issue that could have led to a security compromise and helped the customer mitigate it before release, improving the security posture of the product and reducing risk around the launch.