Trade-Van Application Security Implementation Case Study

This case study details Trade-Van Information Services Co., Ltd's implementation of application security measures to enhance its software development life cycle (SDLC). Established in 1996, Trade-Van recognized the critical need for security due to the handling of personally identifiable information (PII) in its applications. The company adopted the Capability Maturity Model Integration (CMMI) to identify process improvements and mitigate risks. Trade-Van implemented Checkmarx Static Application Security Testing (SAST) as its source code scanning solution, significantly reducing scan times from 48 hours to just three to five minutes. The case study outlines the smooth adoption process facilitated by Galaxy Software Services (GSS), including planning, training, and user consultation. Additionally, the results indicate improved compliance with regulatory requirements and enhanced developer engagement with application security practices. Trade-Van plans to expand its security measures further by adopting additional scanning tools to maintain the integrity of its applications and protect client data.