Sign Up Login
Resource Center  >  Success Stories

Procircular

THE CHALLENGE
  • Procircular offers a broad range of sites and applications that need to be tested for vulnerabilities and made secure 
  • Manual penetration testing was not comprehensive, provided irregular coverage of the applications and was very costly 
  • As more applications and sites were developed and deployed it become impossible to keep up with required tests and making sure applications are tested and secure
THE SOLUTION

Deploy Bright across on various platforms and utilize it to conduct comprehensive automated vulnerability tests of our websites, applications and APIs. By deploying Bright we gained significant efficiencies in our application testing processes and the automated tests provide comprehensive and predictable vulnerability coverage. In addition to the broad set of payloads provided by the DAST solution, we also have the ability to utilize the Fuzzer to detect unknown vulnerabilities and 0day vulnerabilities so we can remediate them and help improve the security of our applications and sites. Over time we plan to integrate Bright into our SDLC to ensure scans are automated as part of our CI/CD and issues are detected and remediated even faster.

IMPACT ON THE BUSINESS

Bright enabled us to significantly improve our application security coverage and remediate vulnerabilities much faster. Bright has reduced the amount of wall clock hours AND man hours we used to spend doing preliminary scans on applications by about 70%.

Testing variance Using Legacy Dast Using Dev-Centric Dast
% of orgs knowingly pushing vulnerable apps & APIs to prod 86% 50%
Time to remediate >Med vulns in prod 280 days <150 days
% of > Med vulns detected in CI, or earlier <5% ~55%
Dev time spent remediating vulns - Up to 60x faster
Happiness level of Engineering & AppSec teams - Significantly improved
Average cost of Data Breach (US) $7.86M $7.86M