How a Global Chemical Company Reduced Rework Costs by 65%
DownloadIndustry: Manufacturing, Chemicals
Company Size: 100k+ employees >60B revenue
Customer Profile
A global chemical company’s manual code review and change management processes were causing long, error-prone development cycles and costly rework, a common challenge for organizations managing SAP security in the chemical industry. By implementing Onapsis Control, the company automated its code and transport checks, enabling them to “get things right the first time” and accelerate their development lifecycle.
The Challenge: Costly Delays from Manual Development Processes
The company relied on custom code to support its business, but its change management process was a major bottleneck. A manual approach to reviewing code and transports led to significant challenges that impacted the speed and security of the business. Their primary pain points were:
- Inability to Implement DevSecOps for SAP: A manual code review process was slow and error-prone, preventing the company from adopting a modern DevSecOps for SAP approach and keeping pace with business demands.
- Costly Rework: Errors in code and transports were often only discovered after being moved into production, leading to expensive remediation efforts and system downtime.
- Increased Risk: It was difficult to implement changes without introducing new performance, security, or compliance issues, creating unacceptable risk for their business-critical applications.
The Solution: Automating Code and Transport Security with Onapsis Control
The company found its ideal solution in Onapsis Control, which allowed them to automate and secure their entire change management process.
Automated Code Scanning
Onapsis Control replaced the time-consuming manual code review process. It automatically scanned hundreds of lines of code in minutes, providing detailed explanations and remediation guidance that shortened the time to resolution.
Deep Transport Inspection
The team gained deep visibility into transports before they were imported into production. This allowed them to identify and resolve problematic configuration or authorization changes that could violate company policy, impact system performance, or create new security and compliance vulnerabilities, backed by timely threat intelligence from the Onapsis Research Labs.
The Results: Faster, Safer, and More Cost-Effective Development
By embedding Onapsis Control into their development lifecycle, the company was able to shift security left, significantly reducing errors, costs, and project delays.
Results at a Glance:
- 75% Reduction in security and quality errors imported into production.
- 65% Less cost on remediation activities and rework.
- 25% Less time spent on manual code reviews.
“Onapsis helps us address two of the biggest trouble areas in our change management processes—custom code and transports. A third-party solution for analyzing these that integrates into SAP ChaRM allows us to get things right the first time and avoid costly rework and manual analyses.”
– Security Architecture Manager, Global Chemical Company
“With Onapsis, we can be more confident that the changes we’re making aren’t going to cause disruptions or performance issues while addressing security and compliance at the same time. It’s a win for everyone.”
– Security Architecture Manager, Global Chemical Company
A Blueprint for Secure SAP Development
This chemical company’s success provides a clear model for accelerating development while reducing risk. Their key to success was automating security checks for their code and transports. Key takeaways for your organization include:
- Automate code reviews to find and fix errors early in the development lifecycle.
- Inspect all transports before they move to production to prevent the import of risky changes.
- Integrate security into your change management process to avoid costly rework and project delays.