Case Study: State of Missouri achieves scalable application security — 360+ applications and 28,000+ flaws fixed in one year with Veracode

State Government Rolls Out a Scalable Application Security Program in One Year

The State of Missouri, facing growing concerns about data breaches affecting millions of taxpayers, made cybersecurity its top IT priority and turned its attention to application security across 14 agencies. The existing on-premises scanning tool produced excessive false positives and saw little adoption, so the Office of Administration’s Director of Application Development, Nikki Veit, sought a more effective, scalable solution.

The state selected Veracode’s cloud-based, policy-driven AppSec platform, enabling fast onboarding, centralized reporting, developer-friendly scanning and training, and API automation. The program quickly scaled—fixing 18,000 flaws in eight months and 28,000 in the first year, expanding to 360+ applications across 14 agencies and ultimately addressing hundreds of thousands of issues—while improving compliance, developer adoption, and security governance.

State of Missouri

Nikki Veit