Veracode Application Security Integration for California CDT

This case study outlines the collaboration between Veracode and the California Department of Technology (CDT) to enhance application security (AppSec) across its software development lifecycle (SDLC). The CDT, responsible for managing the state’s government portal, faced challenges in unifying security processes among its scrum teams while ensuring compliance with stringent state regulations. Veracode provided an end-to-end application security solution that facilitated rapid risk reduction and improved deployment timelines. As a result of this partnership, CDT achieved compliance with state regulations and significantly reduced the time to market for new software deployments. The volume of application scans increased, leading to the remediation of 460 flaws. Additionally, the initiative positioned CDT to standardize its AppSec approach across 500 state agencies, while also improving employee morale and reducing turnover through enhanced processes. This case study serves as a practical example of integrating security measures within government software development.