New cybersecurity initiatives enable protection of critical assets and growth of secure coding talent

This highly complex project required us to manage multiple work streams based on a full evaluation of the various existing applications. This enabled the client to optimise its use of resources and prioritise critical tasks.

The situation

Our client had initiated a Cybersecurity Maturity Improvement Programme whilst simultaneously transforming its IT organisation, centralising the Application Development and Maintenance (ADM) department (10,000 FTE). As part of this transformation Capgemini was engaged to develop the strategy and implement the Cybersecurity Maturity initiatives into the ADM organisation.

 

The solution

Capgemini designed a programme with multiple work streams consisting of Access Management (Privileged Account Management); Asset Management (Crown Jewels); Developer Training (including roll-out of a pilot for Secure Code Warrior); and the design of a Threat and Vulnerability Remediation process.

 

The result                           

The Application Development and Maintenance department was able to meet the cybersecurity improvement target. Some key milestones included:

 

  • Our client was able to identify its ‘crown jewels’ in ADM via the roll-out of a questionnaire to all application owners. This enabled the bank to focus its efforts on critical assets.
  • ADM enrolled almost double the target number of developers for the pilot into Secure Code Warrior, with all of them enrolled into traditional security training. The client recognised the support provided by Capgemini as key in achieving this success.