Consumer Data Science Leader Dunhumby Shops for Better Security Management

Dunnhumby is a global customer data science company that helps retailers and brands understand and leverage customer data to improve business outcomes. They specialize in using data analysis to create personalized customer experiences, ultimately aiming to boost sales, loyalty, and operational efficiency for their clients.

Dunnhumby chose the PointGuard AI platform to streamline application security management, enhance reporting and compliance, and drive efficiency across security and development teams.

• Unifying visibility across 40 business applications, 1500+ GitLab repos and multiple customer deployments
• Automating ingestion and correlation of findings from multiple security scanners into Jira remediation workflows
• Enabling development teams to remain in Jira while managing security issues, preserving investment in Jira workflows
• Improving operational efficiencies through automation of Jira ticket creation and flexible, policy based SLA tracking.
• Reducing the significant effort of creating monthly executive risk management reports
• Prioritizing issues based on client impact and context to focus developer effort on the highest risks

• Full SAML integration with Azure AD enabled automated RBAC and simplified user access
• Bi-directional Jira integration: Support for multiple Jira instances with flexible ticketing structures (single/multi-release tickets) 
• Ability to add custom fields to Jira tickets (Checkmarx Similarity ID, SLA field, true first detected date, Trivy artifact path)
• Support for "non-exploitable" status and custom exceptions management aligned with Dunnhumby terminology
• Integration with Dunnhumby’s automated GitLab CI/CD workflows across SAST, SCA, IaC, and DAST tools
• Runtime dashboards and API-based custom reporting support Dunnhumby’s SLA reporting and MTTR tracking across Business Units and Application portfolio of 40 business applications

• Gave Dunnhumby a single pane of glass for application security posture, without disrupting developer workflows
• Enabled faster SLA compliance reporting and regulatory alignment
• Increased developer trust by reducing false positives and providing clear prioritization
• Improved operational efficiency by reducing toil and manual reporting overhead