Case Study
The Material IT Department is one of the major IT departments within the SNCF Voyageurs company. It has approximately 500 employees working together to ensure the performance and reliability of the trains.
120
applications
controlled and secured
60%
improvement
in open source security
risk scores
“Our collaboration with CAST allowed us to secure our application portfolio under tight deadlines.”
Grégory COMBE
Responsable Services IT & IA, SNCF Voyageurs DSI Matériel
CAST Highlight enabled SNCF Voyageurs to significantly reduce the security risks of its application portfolio within a very tight deadline.
Challenge
SNCF Group’s Chief Digital Officer mandated a strategic and corporate initiative to secure the whole information system ahead of major sporting events in France, such as the 2023 Rugby World Cup and 2024 Olympic and Paralympic Games.
The infamous Log4J vulnerability in late 2021 highlighted critical weaknesses in the information system. The Material IT Department urgently needed a solution to address open-source security risks and meet the extremely tight timeline.
Solution
The Material IT Department at SNCF Voyageurs selected CAST Highlight to improve the security of their applications.
After automatically analyzing each application's source code, CAST Highlight produced actionable intelligence to reduce open-source risks.
Insights included the identification and severity of security vulnerabilities along with recommended version upgrades.
Results
The Material IT Department automated the analysis of its 120 applications by integrating CAST Highlight with its internal code repository, obtaining essential information in real time. This method saved valuable time and enabled them to meet deadlines before the first sporting event.
By leveraging the data provided by CAST Highlight, the Material IT Department was able to improve its open source security risk score up by 60%.
