Case Study: SFR (Société Française du Radiotéléphone) eliminates vulnerabilities early in the SDLC with Synopsys Seeker IAST

Eliminating Vulnerabilities Early in the SDLC for Société Française du Radiotelephone

Altice Europe’s SFR (Société française du radiotéléphone) B2C IT division serves 23 million customers and runs dozens of major web and front-/back-end projects each year. To reduce production vulnerabilities, minimize customer and regulatory risk, and bring security into the early stages of development, SFR needed a dynamic, CI/CD-capable scanning solution that would engage developers, provide contextual, real-time results, and reduce false positives compared with classic SAST tools.

SFR adopted Synopsys Seeker IAST, which integrates into CI/CD pipelines to detect vulnerabilities during code execution, tie findings to business impact, and deliver exact code locations and remediation guidance. Early implementation is already improving detection versus SAST, empowering developers to fix issues during code reviews, and is being tested on a growing set of on-premises applications—promising fewer false positives and higher developer productivity as deployment scales.

SFR

Robert Cohen

Validation & Security Director