Security experts around the world are talking about the importance of improving security measures to keep networks safe—and for good reason. We have plenty of examples of how relentless threat actors can be, and we’ve now seen that not even a pandemic can stop or slow down their attacks. So, it’s up to decision-makers to keep organisations safe, ensure that network perimeters are guarded well, educate users on how to keep their accounts secure with strong passwords and authentication measures, and make sure that applications have no security loopholes.
At ManageEngine, we like to stay on our toes to make sure that our solutions not only offer powerful tool sets, but are also safe and secure. With this same ambition in mind, the ADSelfService Plus team follows a plethora of processes that test the solution, ensuring its security is rock solid. Here’s a list of what happens behind the scenes:
Using our in-house code analysis tool
The ADSelfService Plus team has a powerful in-house code analysis tool that tests the solution to identify if there are any flaws, which are then immediately fixed.
Letting our internal Red Team poke around
Our Red Team is comprised of people whose forte is finding tiny flaws that fly under the radar, and they try to breach our solutions to see if there are any loopholes that could be misused by hackers.
Making use of our Bug Bounty Program
We maintain both internal and external bug bounty programs where our solutions are put to test time and again by groups from within ManageEngine or external people, communities, and security experts to scan for any flaws. If any vulnerabilities are found, they’re immediately patched.
If you want to know more about the activities that take place during the ADSelfService Plus development stage, you can read about it in detail here.
We have also teamed up with Veracode, an independent application security company, to conduct pen tests on ADSelfService Plus, so that we get a third-person perspective on the security footing of the solution.
Moving forward, our product pipeline for ADSelfService Plus includes more enhancements that bolster its feature set, making it a more powerful and more secure solution for our customers.