Kaizen Gaming Enhances Application Security with Contrast Assess
Technology Category
- Application Infrastructure & Middleware - Event-Driven Application
- Cybersecurity & Privacy - Application Security
Applicable Industries
- Equipment & Machinery
- National Security & Defense
Applicable Functions
- Product Research & Development
- Quality Assurance
Use Cases
- Tamper Detection
- Time Sensitive Networking
Services
- Testing & Certification
- Training
About The Customer
Kaizen Gaming is a leading GameTech company based in Athens, Greece. The company operates two primary brands, Betano and Stoixman, and supports both casino and sports games. Kaizen games are available in six countries — Brazil, Cyprus, Germany, Greece, Portugal, and Romania. The company has a large development operation involved in developing new products and enhancing existing ones. It uses the Agile methodology and currently has 28 fully staffed Scrum teams. The team’s release cycle typically centers around two-week sprints by each Scrum team. In terms of languages, Kaizen primarily uses .NET Core and .NET Framework for application development. The company's information security team is small, but most of the security programs they lead are cross-functional and involve stakeholders from other parts of the organization.
The Challenge
Kaizen Gaming, a leading GameTech company, faced significant challenges in its application security. The company's large development operation, which includes 28 fully staffed Scrum teams, was struggling with late identification of vulnerabilities in the software development life cycle (SDLC). This late detection resulted in remediation work being pushed to the end of the development process, causing extra work and stress. The company's reliance on penetration testing did not provide real-time, holistic observability into Kaizen’s overall application portfolio, leading to blind spots and inefficiencies. The company needed an automated, efficient, and scalable solution that could catch vulnerabilities earlier in the process without slowing down their developers. Additionally, the financial team preferred a pricing model that charges by the application rather than by the developer due to the company's large development team and tight margins.
The Solution
Kaizen Gaming chose to implement Contrast Assess, a modern instrumentation approach that uses security instrumentation to do continuous vulnerability scanning from within an application. The scanning happens in the background, eliminating interruptions to the development process and providing continuous feedback to developers when a vulnerability is detected. The Application Security Platform on which Contrast Assess is built provides complete, ongoing security observability for the entire application infrastructure. Kaizen deployed Contrast Assess with Contrast Support Services, which helped to ensure everything was working correctly. The company also uses the native integration with Jira that is built into the Application Security Platform, and is looking to deploy the integration with Slack. In addition to using Assess during the development process, Kaizen’s team uses it with its application in production as well, allowing the tool to perform real-life testing on their application. This has automated the identification of vulnerabilities in their code and made it continuous.
Operational Impact
Quantitative Benefit
Case Study missing?
Start adding your own!
Register with your work email and create a new case study profile for your business.
Related Case Studies.
Case Study
Smart Water Filtration Systems
Before working with Ayla Networks, Ozner was already using cloud connectivity to identify and solve water-filtration system malfunctions as well as to monitor filter cartridges for replacements.But, in June 2015, Ozner executives talked with Ayla about how the company might further improve its water systems with IoT technology. They liked what they heard from Ayla, but the executives needed to be sure that Ayla’s Agile IoT Platform provided the security and reliability Ozner required.
Case Study
IoT enabled Fleet Management with MindSphere
In view of growing competition, Gämmerler had a strong need to remain competitive via process optimization, reliability and gentle handling of printed products, even at highest press speeds. In addition, a digitalization initiative also included developing a key differentiation via data-driven services offers.
Case Study
Predictive Maintenance for Industrial Chillers
For global leaders in the industrial chiller manufacturing, reliability of the entire production process is of the utmost importance. Chillers are refrigeration systems that produce ice water to provide cooling for a process or industrial application. One of those leaders sought a way to respond to asset performance issues, even before they occur. The intelligence to guarantee maximum reliability of cooling devices is embedded (pre-alarming). A pre-alarming phase means that the cooling device still works, but symptoms may appear, telling manufacturers that a failure is likely to occur in the near future. Chillers who are not internet connected at that moment, provide little insight in this pre-alarming phase.
Case Study
Premium Appliance Producer Innovates with Internet of Everything
Sub-Zero faced the largest product launch in the company’s history:It wanted to launch 60 new products as scheduled while simultaneously opening a new “greenfield” production facility, yet still adhering to stringent quality requirements and manage issues from new supply-chain partners. A the same time, it wanted to increase staff productivity time and collaboration while reducing travel and costs.
Case Study
Integration of PLC with IoT for Bosch Rexroth
The application arises from the need to monitor and anticipate the problems of one or more machines managed by a PLC. These problems, often resulting from the accumulation over time of small discrepancies, require, when they occur, ex post technical operations maintenance.
Case Study
Data Gathering Solution for Joy Global
Joy Global's existing business processes required customers to work through an unstable legacy system to collect mass volumes of data. With inadequate processes and tools, field level analytics were not sufficient to properly inform business decisions.
