Case Study: OTP Bank Ukraine achieves reduced IT risk and automated vulnerability management with QualysGuard VM (Qualys)

OTP Bank Ukraine Automates Vulnerability Risk Management

OTP Bank Ukraine, part of the OTP Group, supports a large, heterogeneous IT environment of more than 5,000 endpoints. As the bank grew, its vulnerability program became increasingly manual and fragmented—relying on multiple tools and labor‑intensive correlation—which made it hard to analyze risks consistently and meet regulatory requirements like PCI DSS.

The bank implemented QualysGuard Vulnerability Management (SaaS) to automate discovery, scanning, prioritization and remediation tracking. This centralized approach enabled broader, faster assessments (including web and database systems), regular ASV scans for PCI compliance, and significant labor savings—allowing the security team to reduce risk more effectively while managing many more systems.

OTP Bank

Andrii Maiba

Head of Information Security Department