CUNA Mutual Group teams up with NetSPI to better secure their IT infrastructure
Mark Glass

CUNA Mutual Group is a worldwide provider of insurance, lending, retirement planning, and asset management services for credit unions and their members.
The Challenge
The Solution
Based upon the strong initial success with the NetSPI consultants on the PCI project, and after the company had completed a second round of due diligence on NetSPI’s overall capabilities and reputation, CUNA Mutual Group decided to augment its security assessment/vulnerability program by aggressively expanding its existing service agreement with NetSPI. In addition to the original PCI compliance work started under the initial NetSPI agreement, the final security services agreement between CUNA Mutual Group and NetSPI includes regular ongoing penetration testing, application code reviews and the affiliated reporting and risk assessment consultations naturally associated with each of those individual tasks. As to the expanded contract, the customer put it this way, “We use NetSPI in more places, for more things, now more than ever.”
-
Penetration Testing (PTaaS)
-
Financial Services, Insurance -
1k-5k -
Wisconsin, United States -
cunamutual.com
Keys for Managing Risk
Vulnerability Assessments
Early on, CUNA Mutual Group recognized that effectively managing the security risks to their IT infrastructure required routine vulnerability assessments and penetration testing services to discover, assess, prioritize and mitigate both internal and external threats to their environment. This included manual code reviews and the testing of critical environments.
“While you may not like receiving some of the findings in the reports produced by NetSPI, you won’t be disappointed with the NetSPI team, their process, and the end results. Above and beyond the reporting, I found the NetSPI team easy to communicate with, and I was able to talk to them to pull out contextual information that is typically extremely difficult to capture in any report.”
“Fewer false positives has meant less time wasted on CUNA’s side to validate/deny each item identified, which is why we brought NetSPI in as a replacement to the incumbent code review provider… In addition, we found that NetSPI’s written reports on their work helped make our software development engineers that much better at writing code.”
Explore More Success Stories

EAB Global improves attack surface security within 15 seconds using NetSPI Attack Surface Visibility Solutions
CISO, EAB Global
“NetSPI Attack Surface Visibility has saved EAB Global time, money, and helped us mature our program by helping answer questions faster and more accurately.”

Trimble enhances and secures product development with NetSPI PTaaS
BISO, Trimble
“When we have a trusted partner and platform like NetSPI to focus on finding our gaps it really takes us to that next level of cybersecurity maturity.”

Nuspire partners with NetSPI to safeguard customer trust
Chief Executive Officer, Nuspire
“What makes NetSPI an effective proactive security partner is their focus on innovation. We at Nuspire are very forward thinking. And when you sit down with the strategists at NetSPI, the way that they’re thinking about evolving their platform, the way that they’re thinking about the future, they’re going to innovate products and services that are cutting edge. So, it gives us a sense of comfort that we’re partnering with someone that’s going to be there for the long haul.”