Case Study: Aerogility achieves source code security and operational assurance with NCC Group

Removing the uncertainty behind application source code

Aerogility, a provider of airline management software serving civil and defence aerospace customers, faced the need to remove uncertainty in application source code and guard against common and evolving web vulnerabilities (eg. SQLi, XSS, CSRF) that could affect fleet availability. To provide independent assurance to its customers, Aerogility engaged NCC Group—its long‑standing escrow provider—to carry out a Static Application Security Test (SAST) of the platform’s source code.

NCC Group’s escrow delivery team used market‑leading enterprise code‑verification tools and a dedicated security consultant to run a full static code analysis, ranking findings into seven classes and five severity levels to prioritize remediation. Working with NCC Group, Aerogility’s developers verified and fixed identified issues in their development environment, outsourcing the resource overhead, strengthening their SDLC, and delivering measurable assurance to customers through documented vulnerability rankings and timely code fixes.

Aerogility

Malcolm Bridgeford

Chief Operating Officer