Case Study: Global 500 Technology Company achieves faster innovation and reduced risk with Veracode

Global 500 Technology Company Speeds Innovation While Reducing Risk with Third-Party Governance Program for AppSec

A Global 500 technology company that relies on hundreds of third‑party software partners needed to ensure partner code met the same stringent secure‑software standards as its internal teams. Its existing on‑premises tooling couldn’t scale to audit the volume of partner applications, threatening revenue and reputation, so the Board mandated a program to enforce consistent third‑party AppSec governance without slowing innovation.

The company partnered with Veracode to build and run a cloud‑based third‑party application security governance program that lets partners easily upload and scan desktop, web, SaaS and mobile apps. Within nine months 97% of partners participated and 139 million lines of code were assessed; over the first two years Veracode identified and helped mitigate 65,000 vulnerabilities (including ~7,000 High/Very High), enabled ~two‑week remediation cycles, and sped innovation without hiring extra security staff.