Case Study: CBI Health Group secures patient and employee data with Synack

CBI Health Group - Customer Case Study

CBI Health Group, Canada’s largest provider of community healthcare services, faced constant, high-stakes threats to patient and employee data and needed an external, adversarial perspective to transform its security. To address this, CBI engaged Synack for continuous penetration and missions testing using Synack’s crowdsourced Red Team model (including LaunchPoint and automated Hydra scanning) to scale testing without disrupting operations.

Synack delivered structured and real-world attack testing, reproducing, validating and prioritizing findings, performing patch verification, and providing full visibility into testing activity. The engagement uncovered 37 vulnerabilities (62% high/severe), involved 918 researcher hours, filtered out 45 false reports, and led CBI to act on 90% of Synack’s remediation recommendations—strengthening controls, reducing noise, and establishing perpetual testing that improved CBI’s security posture and regulatory confidence.

CBI Health Group

Cameron Chojnacki

Director IT Operations