Securing the IT Landscape with an Automated Vulnerability Intelligence Program for a Global Airline Group

Business Challenge

Our client, a global airline group, struggled with scattered vulnerability and patch management across different suppliers. This led to obscured risk visibility, PCIDSS audit issues, high false positives, and extended patching cycles.

Security breaches and incidents can not only impact an airline’s critical business operations but can also damage the airline's reputation and passenger’s trust. Therefore, it was imperative for them to deploy an effective solution that can proactively identify and address security weaknesses, reduce the risk of cyberattacks and their associated consequences.

Coforge Solution

Being a long-standing partner, Coforge understood the airline’s pain points and automated its vulnerability management process by designing a comprehensive vulnerability management program.

We held detailed workshops with the airlines to understand each operating airline’s unique policies, pain points and based on the same, devised an integrated a vulnerability intelligence platform for real-time threat modeling.

Key highlights include:

• MASTER framework for swift transformation.
• Integrating a vulnerability intelligence platform for real-time threat modeling.
• Enhanced remediation controls
• Real-time vulnerability alerts.
• Centralized IT risk view based on implementing a centralized IT risk dashboard.
• Quarterly consultation workshops with industry experts.

Results

• Improved security posture and reduced risk with real-time threat modelling.
• Reduced false positives from 61% to 43% in the first quarter.
• Shortened vulnerability cycle from 90+ to 60+ days.
• Near zero service transition.
• Centralized IT risk view.

Key Highlights

An automated, risk-based vulnerability program with enhanced security policies and remediation controls thereby reducing the risk of cyberattacks.