Implementing an organization-wide secrets detection and remediation program is a complex task for security and engineering teams, especially in large, software-driven organizations. Initial steps like Proof of Concept exercises and pilots are crucial for understanding the scope of secrets sprawl, evaluating vendors, and defining incident response workflows. Key challenges include ensuring a smooth developer experience to encourage adoption, curbing secrets sprawl by preventing hard-coded credentials from reaching shared codebases, and fostering collaboration between security engineers and developers for effective incident remediation. GitGuardian addresses these challenges with features such as the improved ggshield CLI, seamless integration with GitHub, and a layered detection strategy that includes server-side blocking checks. Additionally, an enhanced role-based access control system supports the formation of teams within the GitGuardian workspace to reflect organizational structures and facilitate collaboration. These efforts aim to reduce the risks of secrets exposure, improve security posture across the software development lifecycle, and promote a DevSecOps culture.