Boosting SurveyMonkey’s Efficiency with GitHub Advanced Security (GHAS) & Copilot

SurveyMonkey Inc., a leading experience management company providing cloud-based software for brand and market insights, chose Atmosera as their key partner for deploying GitHub Advanced Security and enabling their team with GitHub Copilot.

The project’s desired outcome was to boost developer efficiency and security at SurveyMonkey by strategically enabling and integrating GitHub Copilot and GitHub Advanced Security (GHAS). This initiative, structured in three phases, aimed to support SurveyMonkey’s teams through Copilot enablement, GHAS integration and remediation, and workflow consultation.

Copilot Enablement: Atmosera crafted a thorough enablement program tailored specifically for GitHub Copilot. This program included a series of structured training sessions designed to introduce SurveyMonkey’s team to Copilot’s wide range of features and capabilities. These sessions were supplemented with hands-on consulting, where Atmosera’s experts worked closely with SurveyMonkey’s developers to address specific challenges and ensure seamless adoption. This personalized approach helped the team understand and effectively leverage Copilot’s features to enhance their development processes.

GHAS Remediation: Atmosera’s team of GHAS and DevSecOps experts comprehensively assessed the issues stemming from third-party integrations within SurveyMonkey’s environment. They identified and analyzed the root causes of these issues, followed by implementing targeted remediation strategies to resolve them. This ensured the smooth and efficient operation of GitHub Advanced Security (GHAS), reinforcing the security framework within SurveyMonkey’s development workflows.

Implementation Details

The implementation process was meticulously planned and executed in three distinct phases:

Phase 1: GitHub Copilot Enablement

• Conducted structured enablement sessions to educate SurveyMonkey’s team on Copilot’s capabilities, offering in-depth insights into how these features can be utilized effectively.
• Provided hands-on consulting to address and remediate issues encountered post-GHEC migration. This involved practical, real-time problem-solving and support to ensure the team could integrate Copilot smoothly into their workflows.

Phase 2: GHAS Integration Deployment and Remediation

• Engaged GHAS and DevSecOps experts to assess the complications caused by third-party integrations. These experts conducted a detailed analysis to pinpoint the specific issues disrupting the system.
• Developed a strategic plan and executed remediation actions to ensure GHAS operated correctly and efficiently within SurveyMonkey’s environment. This included both technical fixes and process improvements.
• Held workshop sessions with SurveyMonkey’s technical security engineers to address and resolve their custom integration workflow with GHAS. These sessions provided the engineers with the knowledge and skills needed to manage and maintain GHAS effectively.

Phase 3: Workflow Consultation

• Conducted consultations on workflow improvements to maximize the benefits of GitHub’s advanced features. This involved reviewing existing processes and suggesting enhancements tailored to SurveyMonkey’s specific needs and goals.
• Ensured alignment with SurveyMonkey’s internal timelines and project milestones, maintaining a structured approach to project management and delivery.
• Worked closely with security engineers to upskill them on the proper use and management of GHAS within their GHEC environment. This upskilling ensured long-term sustainability and efficiency in their security practices.