Nipro Digital Technologies Europe Unifies Code-to-Cloud Security and Reaches Zero Critical Open Issues with Wiz

To scale its medical software securely on Microsoft Azure, Nipro Digital Technologies Europe replaced fragmented tools with the WizGo bundle. By unifying code-to-cloud visibility and eliminating alert noise, the DevOps team minimized operational overhead, streamlined healthcare compliance, and achieved zero critical open security issues.

Nipro Digital Technologies Europe

Industrie

Santé

Région

Europe

Produit Wiz

Wiz Code

Plateformes cloud

Azure
Prêt à commencer ?
Demander une démo

Challenge

● Fragmented, open-source tools caused visibility gaps and security bottlenecks as Nipro Digital scaled its cloud-enabled platform.

● Siloed environments made it difficult to prioritize risks, creating alert fatigue for the DevOps team.

● Manual verification efforts strained resources needed for strict regulatory compliance (MDR, GDPR).

Solution

● Wiz provided Nipro Digital with centralized visibility across all Azure environments, eliminating blind spots and connecting code to production risks.

● Teams proactively identify risky patterns early with a unified view of all workloads.

● DevOps streamlines remediation with actionable, prioritized insights, significantly reducing manual overhead.

Zero critical issues icon

Zero critical issues

maintained across cloud environments

Significant reduction  icon

Significant reduction

in manual triage and operational overhead

Five icon

Five

critical Kubernetes environments covered by Wiz Runtime Sensor

About Nipro: Digital Innovation for Nephrology Care

Nipro Digital Technologies Europe (NDTE) is the digital technology branch of Nipro, a global medical manufacturer. Based in Bruges, Nipro Digital is dedicated to building software for nephrology and dialysis care. Its flagship product, NephroFlow, is a process-oriented dialysis software platform that supports healthcare teams across the entire clinical workflow—saving nurses up to 60 minutes per shift by eliminating administrative burdens and enabling direct, real-time data communication. Guided by the corporate mission to help people "Live Longer. Live Better," Nipro Digital ensures its software actively improves workflows and patient safety worldwide.

The Challenge: Fragmented Tools, Alert Fatigue, and High-Stakes Patient Data

As NephroFlow evolved from local standalone deployments into a cloud-enabled, internationally scalable platform, security became a core component of the product strategy. Because the application processes highly sensitive clinical and patient data, maintaining confidentiality, integrity, and availability is paramount to ensuring patient safety, regulatory compliance (MDR, GDPR), and customer trust.

Prior to implementing Wiz, the small DevOps team at Nipro Digital managed infrastructure, cloud architecture, and security posture across their Azure-only environment using a scattered array of open-source tools and native signals. 

However, this highly fragmented approach created significant bottlenecks:

  • Siloed Findings: Code and dependency scanners gave separate findings with limited environmental context. The team could not easily see whether a vulnerable package was actually deployed, internet-facing, or connected to patient data in production.

  • Manual Prioritization Cycles: Triage required extensive manual investigation to correlate identity, storage, networking, and Kubernetes layers.

  • Alert Fatigue: Competing tools generated overwhelming, unprioritized lists of "critical" findings that slowed down developers and threatened feature delivery time-to-market.

"Before Wiz, we had visibility through separate tools and reports, but it was difficult to quickly identify which misconfigurations or vulnerabilities were truly critical — especially when patient data, production workloads, or internet exposure were involved."

— Pieter Callewaert, Senior DevOps Engineer

The Solution: A Single Pane of Glass from Code to Runtime

Nipro Digital sought a centralized, cloud-specific solution that could seamlessly connect code findings to real production risks. They evaluated alternative platforms that focused heavily on code-scanning workflows, but found they lacked the comprehensive infrastructure and cloud context required to validate actual exposure.

Nipro Digital selected Wiz and deployed the WizGo bundle. During a one-week Proof of Value (POV), assisted by a hands-on Wiz product specialist, the team agentlessly connected Wiz to their Microsoft Azure environment, immediately achieving comprehensive visibility across Azure Kubernetes Service (AKS) application workloads and Azure Storage Accounts.

"With WizGo, the biggest value is that we get practical cloud security coverage without too much operational overhead. For a DevOps team, that is important: we need actionable insights, not another tool that creates more work."

— Pieter Callewaert, Senior DevOps Engineer

To establish a mature, proactive threat defense workflow, Nipro Digital integrated several core layers within the single Wiz platform:

  1. Wiz Cloud & Graph Context: Replaced fragmented logs by mapping cloud misconfigurations, identities (Microsoft Entra ID), and network flow logs into a unified context model.

  2. Wiz Code: Enabled developers to scan codebases early in the software development lifecycle, ensuring vulnerabilities are fixed near their point of origin while preserving production-risk prioritization.

  3. Wiz Runtime Sensor: Deployed via GitOps (Helm charts and ArgoCD) across five core Kubernetes environments.

The Results: Zero Critical Open Issues and Total Cloud Confidence

Operationalizing Wiz turned scattered security findings into a manageable, highly structured remediation workflow. Security shifted from a reactive review step at the end of the development lifecycle to an embedded, shared responsibility across engineering teams.

1. Immediate Reduction of the Legacy Attack Surface

During the initial evaluation, Wiz immediately flagged vulnerable, deprecated legacy infrastructure that had been overlooked because it was outside day-to-day deployment flows.

"Once we confirmed they were deprecated and no longer needed, we cleaned them up instead of spending time patching infrastructure with no business value... The right fix was removing legacy attack surface entirely."

— Pieter Callewaert, Senior DevOps Engineer

2. Reaching the "Zero Critical Club"

By moving away from unprioritized "100 criticals" lists provided by standard scanners, Nipro Digital leveraged the Wiz Security Graph to isolate toxic combinations. This eliminated noise and allowed the team to methodically remediate high-priority open risks.

"Today, our open high-priority risk is much more focused: we have 0 critical issues open and only a small number of high severity issues remaining."

— Pieter Callewaert, Senior DevOps Engineer

3. Maximizing DevOps Efficiency with Low Operational Overhead

For a small DevOps-led security team, consolidating disjointed open-source tools into the WizGo bundle eliminated manual triage hours, dramatically accelerated mean time to detect and respond (MTTD/MTTR), and reduced alert fatigue.

"What stands out most is the prioritization. Wiz helps us move from 'there are many findings' to 'these are the few issues that matter most because they are exposed, connected to sensitive data, or part of a risky path."

— Pieter Callewaert, Senior DevOps Engineer

4.  Identifying Real-Time Events and Key Behaviors

Wiz Runtime Sensor allowed Nipro Digital to capture real-time kernel-level events and process execution behaviors inside live containers.

5. Verified Compliance and Patient Trust

With continuous benchmarking across Azure Storage Accounts and AKS infrastructure, Nipro Digital now possesses the "hard numbers" and verifiable evidence required for compliance audits (ISO 27001, ISO 27701, MDR, GDPR) and customer security assessments.

"The biggest business value is confidence. As a healthcare software provider handling patient data in Azure, we need to prove that our cloud environments are secure, monitored, and improving over time. Wiz helps us benchmark that and focus on the risks that matter most."

— Pieter Callewaert, Senior DevOps Engineer

What's Next?

Wiz continues to support Nipro Digital as they scale NephroFlow securely across new global regions and expanded cloud deployments. By relying on the predictive safety net of the Wiz Runtime Sensor and continuous cloud visibility, engineering teams have the confidence to innovate and ship medical software enhancements rapidly without compromising patient safety or data integrity.

Obtenez une démo personnalisée

Prêt(e) à voir Wiz en action ?

"La meilleure expérience utilisateur que j’ai jamais vue, offre une visibilité totale sur les workloads cloud."
David EstlickRSSI
"Wiz fournit une interface unique pour voir ce qui se passe dans nos environnements cloud."
Adam FletcherChef du service de sécurité
"Nous savons que si Wiz identifie quelque chose comme critique, c’est qu’il l’est réellement."
Greg PoniatowskiResponsable de la gestion des menaces et des vulnérabilités