Case Study: Carlson Wagonlit Travel achieves comprehensive vulnerability management and faster remediation with NetSPI

Carlson Wagonlit Travel - Customer Case Study

Carlson Wagonlit Travel (CWT), a global business travel management firm, needed a consistent, actionable way to test internet-facing applications and communicate security requirements to in-house developers. With vague, overly detailed security policies, no dedicated testing team, and no formal vulnerability validation or remediation workflow, CWT turned to NetSPI for a practical program to harden online applications and embed secure development practices.

NetSPI implemented a vulnerability management program development (VMPD) approach, worked with CWT security and development teams to translate high-level requirements into actionable specs, introduced testing tools and processes (including procedures for WebInspect), and trained staff to internalize the process. As a result, CWT began seeing changes within days: general goals became specific requirements, vulnerabilities were identified and scored, remediation steps prioritized and tracked with month-by-month reports, and the company can now state the number of vulnerabilities and expected fix timelines — all delivered and supported by NetSPI.

Carlson Wagonlit Travel

Dane Smiley

Interim Chief Information Security Officer