GitLab-case-study-banner-2

Case study | GitLab

Empowering a Global Engineering Leader to Modernize DevSecOps

The client

Our client is a multinational technology conglomerate headquartered in Germany. It's a leading company in areas like industry, infrastructure, mobility, and healthcare, focusing on digital and sustainable transformations.

Client requirements

Modernize Toolchain

Replace the legacy toolchain with an integrated solution to break down silos and enable seamless collaboration across embedded, IoT, and cloud-native development teams.

Automate Compliance & Quality Checks

Implement automated processes for compliance verification and code quality assurance to reduce manual effort and human error.

Centralized Visibility

Establish unified visibility into code quality, security, and compliance metrics across all engineering workflows.

Our approach

Standardized CI/CD pipelines across 100+ embedded and cloud projects, integrating custom SAST rules for C/C++ to enhance security. Automated compliance gates for ISO 26262 and IEC 62443 were embedded into merge requests, while centralized SCA provided real-time visibility into third-party components and vulnerabilities. Role-based training and hackathons further promoted a strong DevSecOps culture across teams.

Our solution

unified pipeline

Unified Pipelines

Standardized CI/CD pipelines for firmware and application teams to ensure consistency.

security testing

Embedded Security Testing

Integrated SAST, DAST, and software composition analysis (SCA) specific to real-time and safety-critical code.

cicd automation

Automation

Implemented policy-as-code to enforce ISO 26262 and IEC 62443 cybersecurity standards with automated checks.

Business benefits

business benefits

Technology stack

GitLab