Gunadhya
0 Driving Innovation |
Empowering Customers | Transforming Businesses

Strengthening Security and Framework Resilience for Nasdaq's Calypso Platform

Gunadhya Software Solutions was initially tasked with implementing framework-wide changes to fix SQL vulnerabilities on Nasdaq's platform. This assignment evolved into a comprehensive security scanning and remediation initiative. Our team handled end-to-end third-party jar upgrades for security and technological advancements, including framework upgrades and automated scanning. The engagement, initially planned for three months, has now continued for over six years, demonstrating the ongoing value provided.

Challenges

challenge

Complex Database Layer: The platform's complex database layer and an extensive number of files created challenges for comprehensive vulnerability identification and resolution.

Lack of Update Processes: The absence of a standardized process for regular third-party and other security vulnerability updates required developing a robust and efficient approach.

Module Coordination: With over 100 modules managed by different teams, effective coordination and streamlined delivery of monthly releases became imperative.

New Tools Adoption: Learning and integrating multiple security tools like Veracode, Checkmarx, and NexusIQ required quick upskilling and careful implementation.

Solution

solution

Framework Changes: The team worked diligently to achieve the initial framework modifications within the agreed timeline, ensuring minimal impact on existing functionalities.

Minimal-Impact Framework: We developed an efficient framework that required minimal changes to existing architecture while ensuring security compliance.

Third-Party Jar Management: Collaborating with Nasdaq management, we implemented a process to identify and fix third-party vulnerabilities with minimal disruption.

Automated Scanning: Automated security scanning was established to identify vulnerabilities swiftly and consistently across the platform.

Result

vulnerability_fixes
Complete Vulnerability Fixes

All identified vulnerabilities have been resolved, with newly discovered ones being addressed within a month.

stringent_framework
Stringent Frameworks

New frameworks ensure that no new vulnerabilities are introduced, securing the platform against future threats.

team_growth
Team Growth and Trust

The team has grown from 3 to 10 members and is now entrusted with additional upgrade and maintenance responsibilities.

appreciation
Client Appreciation

Individual and team efforts have been consistently recognized and appreciated by Nasdaq for their diligence and impact.

Technology Stack

java

Java

spring

Spring

hibernate

Hibernate

Oracle

Oracle

PostgreSQL

PostgreSQL

checkmarx

Checkmarx

cucumber

Cucumber

elastic_search

Elasticsearch

junit

JUnit

Nexusiq

Nexusiq

sonarcube

SonarQube

veracode

Veracode

jenkins

Jenkins

gradle

Gradle

jboss

JBoss

apachetomcat

Apache Tomcat

Docker

Docker