Case Study: Exela Pharma Sciences reduces SaaS risk and attack surface with Reco

Exela Pharma Sciences Leverages Reco to Reduce its Attack Surface Area and Manage Risk

Exela Pharma Sciences, a fast-growing US-based specialty pharmaceutical company, needed better visibility and control across its expanding SaaS environment. With sensitive data spread across Microsoft 365, Veeva CRM/Vault, SAP, and many connected apps, the security team struggled with shadow applications, stale accounts, overpermissioned access, and compliance reporting requirements tied to FDA, NIST CSF 2.0, and CIS Benchmarks.

Reco deployed its Dynamic SaaS Security platform to discover SaaS sprawl, assess risk, and guide remediation across Exela’s environment. Using Reco’s app discovery, posture checks, vendor ranking, and “How to Fix” guidance, Exela enforced MFA, rolled out SSO, removed risky and stale accounts, and built automation for file review; it also integrated alerts into FreshService. The result was a 13% increase in posture score in 30 days, reduced attack surface area, stronger compliance visibility, and faster response to new SaaS risks.

Exela Pharma Sciences

Aaron Ansari

Chief Information Security Officer