From Zero Visibility to a Fully Secured Supply Chain: Kaltura’s Journey with OX

Kaltura, a leading video streaming company, transformed its security posture by moving from total blind spots to a fully secured software supply chain. Faced with “endless tickets” and a reactive security process, Kaltura partnered with OX Security to gain immediate visibility and actionable insights. By connecting OX to their development pipeline, the team achieved a complete view of their supply chain in five minutes, enabling a strategic shift toward proactive developer empowerment and efficient risk remediation.

For Kaltura, the primary security challenge was a lack of visibility. Sagiv Peer describes the situation as a significant blind spot: “I think that the biggest security challenge was visibility.” Without a clear picture of their software supply chain, it was difficult to identify where security issues were, which teams were struggling, and how to prioritize remediation efforts effectively. This lack of insight turned security into “an endless ticket”, a reactive process that struggled to address the root causes of vulnerabilities.

Kaltura’s search for a solution led them to OX Security. Shai Sivan describes the partnership as “a match made in heaven – building an enterprise-grade pipeline audited by all the biggest customers in the world without any kind of deviation.” The strategy focused on a solution that allowed for rapid implementation and high-speed results. Sivan notes that “OX allows you to do fast onboarding, fast remediation. You can see the result very, very quickly.”

The turning point was the immediate visibility provided by the OX platform. Upon connecting OX to their repository, the impact was instantaneous. “What we got in the first five minutes is an end-to-end clear supply chain,” says Sagiv Peer. “I knew exactly where everything was, exactly what my security issues were.” This clarity allowed the team to move beyond simply flagging problems to organizing focused developer hackathons and creating a roadmap for targeted security training.

The transformation in Kaltura’s security posture has been comprehensive, moving from chaos to a controlled environment. As Sagiv Peer summarizes the outcome: “Order, full end-to-end secured supply chain with OX giving full visibility and coverage.” Key results from the page include:

• 5 Minutes to Visibility: Gained a complete and clear view of the software supply chain within five minutes.

• Comprehensive Coverage: Achieved full end-to-end visibility across the entire supply chain.

• Targeted Action: Shifted from an endless ticketing process to a data-driven approach for developer training and remediation.

• Operational Order: Replaced reactive processes with a verifiable, secured pipeline.

• Principles for establishing a resilient and visible software supply chain.

• Visibility is the Foundation: You cannot protect what you cannot see; a clear supply chain view is the first step to security.

• Speed is Essential: Modern security requires the ability to onboard and see risks in minutes to keep pace with engineering.

• Moving Beyond Tickets: True security transformation involves moving away from “endless tickets” and focusing on fixing critical items with full context.