In today's fast-paced software development world, maintaining the highest levels of security and compliance is a daunting challenge. Our new case study highlights how Infoblox, a leader in Enterprise DDI (DNS, DHCP, IPAM), successfully scaled their product security and compliance efforts using Anchore Enterprise. Let's dive into their journey and the impressive results they achieved.
The Challenge: Scaling security in high-velocity Environments
Infoblox faced several critical challenges in their product security efforts:
- Implementing "shift-left" security at scale for 150 applications developed by over 600 engineers with a security team of 15 (a 40:1 ratio!)
- Managing vulnerabilities across thousands of containers produced monthly
- Maintaining multiple compliance certifications (FedRAMP, SOC 2, StateRAMP, ISO 27001)
- Integrating seamlessly into existing DevOps workflows
"When I first started, I was manually searching GitHub repos for references to vulnerable libraries," recalls Sukhmani Sandhu, Product Security Engineer at Infoblox. This manual approach was unsustainable and prone to errors.
The Solution: Anchore Enterprise
To address these challenges, Infoblox turned to Anchore Enterprise to provide:
- Container image scanning with low false positives
- Comprehensive vulnerability and CVE management
- Native integrations with Amazon EKS, Harbor, and Jenkins CI
- A FedRAMP, SOC 2, StateRAMP, and ISO compliant platform
Chris Wallace, Product Security Engineering Manager at Infoblox, emphasizes the importance of accuracy: "We're not trying to waste our team or other team's time. We don't want to report vulnerabilities that don't exist. A low false-positive rate is paramount."
Impressive Results
The implementation of Anchore Enterprise transformed Infoblox's product security program:
- 75% reduction in time for manual vulnerability detection tasks
- 55% reduction in hours allocated to retroactive vulnerability remediation
- 60% reduction in hours spent on compliance tasks
- Empowered the product security team to adopt a proactive, "shift-left" security posture
These improvements allowed the Infoblox team to focus on higher-value initiatives like automating policy and remediation. Developers even began self-adopting scanning tools during development, catching vulnerabilities before they entered the build pipeline.
"We effectively had no tooling before Anchore. Everything was manual. We reduced the amount of time on vulnerability detection tasks by 75%," says Chris Wallace.
Conclusion: Scaling security without compromise
Infoblox's success story demonstrates that it's possible to scale product security and compliance efforts without compromising on development speed or accuracy. By leveraging Anchore Enterprise, they transformed their security posture from reactive to proactive, significantly reduced manual efforts, and maintained critical compliance certifications.
Are you facing similar challenges in your organization? Download the full case study and take the first step towards a secure, compliant, and efficient development environment. Or learn more about how Anchore's container security platform can help your organization.