Remediating
Misconfigurations & Vulnerabilities In 1 Click
The Profile
15,000 employees
20,000 Devices
Phoenix, Arizona
The Background
The capital of Arizona and the sixth largest city in the United States, Phoenix has a population of over 1.5 million. Serving the community through more than 30 different departments.
As a government entity, it oversees critical infrastructure, including an airport, municipal courts, fire and police departments, water treatment facilities, election, and transit systems.
These high-profile assets make the city a prime target for cyber threats, necessitating robust cybersecurity measures.
Table of Content
Following a series of significant cyberattacks in 2020, the city recognized the need to enhance its cybersecurity posture.
Despite deploying vulnerability assessment (VA) and endpoint detection and response (EDR) solutions, blind spots persisted, particularly around device misconfigurations.
The Challenge
Following a series of significant cyberattacks in 2020, the city recognized the need to enhance its cybersecurity posture. Despite deploying vulnerability assessment (VA) and endpoint detection and response (EDR) solutions, blind spots persisted, particularly around device misconfigurations.
The possibility of adversaries exploiting unknown configuration errors was a constant concern,” noted Mitchell Kohlbecker, Chief Information Security Officer for the City of Phoenix
The city’s existing tools lacked the ability to systematically identify misconfigurations, leaving the security team to discover issues by chance during routine operations.
This reactive approach resulted in ad hoc remediations that could take weeks, increasing the risk of system downtime or data breaches. The city prioritized end-to-end visibility to establish clear goals, processes, and benchmarks for reducing cyber exposure.
The Solution
After encountering GYTPOL at a cybersecurity conference in Scottsdale, Arizona, the city adopted its configuration-focused endpoint posture management solution. GYTPOL delivers granular, real-time visibility into device configurations across the enterprise, identifying misconfigurations and enabling automated, non-disruptive remediation with a single click.
The platform’s quick deployment and user-friendly interface allowed the city to systematically address problematic configurations, enforce industry best practices (e.g., CIS, NIST), and establish a process for continuous improvement.
GYTPOL’s automated workflows and policy validation streamlined operations, reducing human error and ensuring consistent security baselines.
Further bolstering governance posture, the city’s change advisory board was given the mandate, alongside their cyber risk committee, to routinely review and approve configuration changes.
The Results
GYTPOL's automated detection and proactive hardening transformed the city’s cybersecurity operations and significantly reduced risk.
The solution was deployed in minutes without requiring any system downtime. And the initial scan revealed hundreds of critical attack vectors across thousands of devices, exposing previously undetected risks that expanded the city’s attack surface.
Empowered by GYTPOL’s insights, the security team was immediately authorized to remediate critical issues, addressing over 5,000 configuration risks within days. The force multiplier was profound, with six GYTPOL users outputting what would otherwise take a team of 30–40 to accomplish.
Over the first 30 days, the city achieved:
83
Reduction
In the attack surface, as measured by known risks.480
Increase
In IT and Security labor productivity.77
Decrease
In the mean time to remediationThe city’s partnership with GYTPOL revolutionized its approach to cybersecurity, uncovering hidden risks and enabling rapid, automated remediation.
This demonstrates how GYTPOL’s innovative solution empowers organizations to:
Reduce cyber exposure
Enhance operational efficiency
Maintain readiness & resilience in the face of evolving threats
By automating routine tasks and implementing robust processes, organizations can reduce the risk of human error, enhance operational consistency, and ensure that IT systems run smoothly and securely.
And by validating existing security policies and automatically detecting violations, GYTPOL empowered the City of Phoenix to implement a process of continuous improvement.

“Configurations are as critical as vulnerability and patch management. If budgets were cut, GYTPOL would be one of the last tools I’d let go.”
.png?width=860&height=860&name=mitch-min%20(1).png)
Mitchell Kohlbecker
Chief Information Security Officer
Ready to get going with GYTPOL?
GYTPOL continuously monitors your devices and systems in search of misconfigurations and unpatched vulnerabilities. Once found, GYTPOL serves an alert explaining the what and the why of the matter and enabling proactive, non-disruptive remediation.
By enforcing standards like CIS and NIST, GYTPOL ensures consistent, secure configurations across all devices, strengthening organizational resilience and operational continuity.
Interested in learning more? We recommend you start with a demo! Fill in the accompanying form below and we'll get back you soon.