Case study

Building Cloud resilience with automated security remediation


 

Solvay, a global leader in specialty chemicals and advanced materials, manages a complex cloud ecosystem supporting multiple business units and partners. The landmark Syensqo spin-off brought a critical phase of organizational change, making strong security essential. In just two months, Rappit secured Solvay’s cloud infrastructure, safeguarding sensitive data and ensuring business continuity without disruption.

Solvay SecOps case study banner

Their challenges

  • Massive scale and complexity: Managing over 400 Google Cloud projects with distributed ownership led to inconsistent security standards and an overwhelming volume of Security
    Command Center (SCC) Enterprise findings.
  • Rapid, measurable remediation goal: The immediate objective was to achieve a rapid and measurable improvement, specifically reducing the number of open SCC findings by over 50%.
  • Need for sustainable governance: The challenge extended beyond remediation to establishing sustainable automated processes for ongoing security management across the entire
    organization.
  • Business constraint and risk: All security initiatives had to be executed without disrupting business operations, particularly while the company was simultaneously undergoing critical corporate changes.

Solvay needed a partner who could guarantee a strategic, risk-free security transformation during this period.

Solvay SecOps hero image

Our solutions

Diagnosis and analysis

Rappit leveraged Google Cloud’s native security tools, starting with Security Command Center (SCC) data analysis, to gain a centralized view of security posture and identify the most prevalent issues: OS, software, and container image vulnerabilities.

Targeted technical automation

A targeted remediation strategy was implemented, including the use of Ansible for automated OS patching and enforcement of old kernel removal, alongside enabling container analysis to automatically scan new images upon push.

Workflow integration and governance

Process automation was established by integrating SCC with Jira for automatic ticket generation and using Looker dashboards for real-time tracking, complemented by the creation of landing zone governance and security principles to prevent the recurrence of issues.

"The critical Syensqo spin-off demanded uncompromising security. Rappit conducted an intensive focused mission, ensuring Solvay's cloud resilience and protecting sensitive data across our complex ecosystem during major organizational change."

Cristina Capatina IT Cloud Tech Lead, Solvay
Read Case
Read Case

Results

Drastic reduction in risk

The two-month security mission was a huge success, drastically improving Solvay’s security posture and closing over 95% of the security findings.

Foundation of continuous security

Established security as an ongoing, integrated operation by implementing automated workflows and governance principles, shifting from reactive cleanup to proactive security management.

Strategic and automated approach

Proved the value of an automation-driven strategy using the Google Cloud security ecosystem, not only resolving immediate issues but building a robust foundation for continuous security and compliance.

Solvay SecOps case study

Want to check it out later?

Download the full PDF case study to explore our work in detail. Perfect for a closer look at your own pace.

Download the pdf
Rappit Developer - optimized for Google Cloud

Google Cloud services used

  • GCP OS Patch Manager
  • Security Command Center
  • Artifact Registry
  • VPC Service Controls
  • Organization Policies
  • Cloud Key Management Service (KMS)
  • BigQuery

Curious how we can enhance your digital journey?

Get in touch