Artisan Studios implemented a serverless secrets scanning and remediation solution for a leading quick-service restaurant chain, reducing exposed secret occurrences and driving a culture of accountability.
The Challenge
Given the growth in head count within the client organization, it became known that certain secrets were being stored insecurely throughout various document repositories, which clearly violates the principles of least privilege application access models. Artisan Studios was engaged to create a system that would scan all content for secrets and report those exposed secrets to the appropriate teams for remediation.
The Solution
Beginning with an initial investigation, Artisan solidified requirements and ensured all stakeholders were aligned. From there, Artisan designed a serverless solution that was built for scale and held accountable for scanning millions of pieces of content at a time.
The Results
The first run of the system processed just under 1 million pieces of content and yielded over 200 exposed secrets to be remedied. Those issues were logged in Jira and assigned to the appropriate teams for remediation. All exposed secrets were removed and rotated in corresponding systems within three weeks. The secret scanner now runs nightly, giving the client comfort that any vulnerabilities are remedied in a very timely fashion. More importantly, the system has helped to drive a culture of accountability within the client organization, which is evident by the significant decline of daily exposed secret occurrences.