ISO/IEC 27001 specifies the requirements for establishing, implementing, maintaining and continually improving an information security management system within the organization's context. It also includes requirements for the assessment and treatment of information security risks tailored to the needs of the organization. Securden has undergone independent audits for various aspects, including software design, development, quality assurance, engineering, and more and has received certification ISO/IEC 27001 certification.
SOC 2, aka Service Organization Control, is a cybersecurity compliance framework developed by the American Institute of Certified Public Accountants (AICPA). The framework specifies criteria for upholding high standards of data security based on trust service principles. Securden has been assessed for these principles and has received SOC 2 Type 1 & Type 2 certification.
The General Data Protection Regulation (GDPR) is a comprehensive European privacy law that significantly enhanced data protection rights and imposed robust obligations on organizations handling customer data. GDPR replaced the outdated Data Protection Directive.
Securden is fully committed to GDPR compliance. When we provide our services to businesses, we act as a data processor, handling data under their instruction. We adhere strictly to GDPR principles to safeguard customer privacy. We are committed to upholding rigorous standards across our business operations and product offerings to safeguard our customers' data.
Agile Infosec performed various injection tests, privilege separation tests, database checks, permission checks and many other techniques to break the application security model. The tests were performed on the following components of Securden:
“Our attacks did not take over the application or access the stored passwords and confidential data.
The Privileged Access Security Platform application appears well built and thought of from a security point of view. The application has a very good overall security posture, above what is the industry standard for similar products.
There were no critical vulnerabilities found while testing all the application. A total of eight vulnerabilities were found, one High risk and the rest Medium or Low risk. These vulnerabilities were communicated to Securden, which promptly released a new version fixing all the issues found.”
- Security specialists of Agile Infosec
