Case Study: Arval (a BNP Paribas fleet management company) achieves automated, scalable vulnerability management and regulatory compliance with Qualys

Arval Shifts Automated Vulnerability Management into Overdrive

Arval, a BNP Paribas subsidiary that manages fleet financing and operational leasing across 30+ countries (about 5,500 employees and ~3,000 servers), needed to move from manual vulnerability analysis to an automated, repeatable process that fits its ITIL and ISO 27001 practices and meets frequent internal and group audits. Tight IT security resources meant Arval required a solution that reduced repetitive manual work, ensured regulatory compliance, and could scale with its expanding, distributed environment.

After evaluating solutions, Arval deployed Qualys’ SaaS platform to automate continuous discovery, vulnerability assessment, reporting, and remediation tracking. The service integrated with Arval’s change-control processes, freed security staff to focus on remediation rather than manual reporting, and provided verifiable, auditable evidence of compliance. The result was a scalable, enforceable vulnerability-management lifecycle that improved security posture, simplified audits, and accelerated remediation across subsidiaries.

Arval

Jean-Marc Lecoint

CISO