SolarWinds Trust Center
The latest tips and assets developed for you
Secure by Design – and secure by default
SolarWinds follows a defined software development methodology designed to increase the resiliency and security of our products. This process follows U.S. federal guidelines for secure software development as described in the National Institute of Standards & Technology Secure Software Development Framework (SSDF). Additionally, we follow guidelines described in the Enduring Security Framework (ESF).
- We have formed a cross-functional team of experts to review these guidelines and adjust our processes as required
- We conducted a thorough gap analysis of our development process against the controls recommended in the SSDF
- We identified which controls we met or did not meet
- We then adjusted our processes to meet the unmet controls, or developed alternate secure processes
Security Statement
We strive to implement and maintain appropriate administrative, physical, and technical safeguards, security processes, procedures, and standards designed to protect the confidentiality and security of our customer data.
Vendor Data Protection Requirements
Third-party vendors are used to provide SolarWinds with various goods and services to help facilitate its business. Before entering any third-party relationships, we take deliberate steps to assess the risk related to the vendor relationship. We take care to understand the compliance, reputational, strategic, operational, and transactional risks relating to a particular vendor before entering into a contractual relationship.
SolarWinds follows a defined software development methodology designed to increase the resiliency and security of our products. This process follows U.S. federal guidelines for secure software development as described in the National Institute of Standards & Technology Secure Software Development Framework (SSDF). Additionally, we follow guidelines described in the Enduring Security Framework (ESF).
- We have formed a cross-functional team of experts to review these guidelines and adjust our processes as required
- We conducted a thorough gap analysis of our development process against the controls recommended in the SSDF
- We identified which controls we met or did not meet
- We then adjusted our processes to meet the unmet controls, or developed alternate secure processes
Security Statement
We strive to implement and maintain appropriate administrative, physical, and technical safeguards, security processes, procedures, and standards designed to protect the confidentiality and security of our customer data.
Vendor Data Protection Requirements
Third-party vendors are used to provide SolarWinds with various goods and services to help facilitate its business. Before entering any third-party relationships, we take deliberate steps to assess the risk related to the vendor relationship. We take care to understand the compliance, reputational, strategic, operational, and transactional risks relating to a particular vendor before entering into a contractual relationship.
Case Study
Zenith Pensions relies on SolarWinds for simple, powerful, secure solutions
Follow Zenith's story: Vulnerable to phishing attacks after emailing sensitive info. Witness their journey to a secure file transfer solution.
We hold ourselves to high standards of excellence
Secure file transfer and file sharing from an intuitive, central console
ISO/IEC 27001
ISO/IEC 27001 is a specification for an information security management system (ISMS), which is a framework for an organization's information risk management processes.
This certification covers all our products, major locations supporting the development, maintenance, operations, support, and services in the following locations:
- Austin, Texas
- Charlotte, North Carolina
- Reston, Virginia
- Brno, Czech Republic
- Cork, Ireland
- Krakow, Poland
- Taguig City, Philippines
- Bengaluru, India
To verify certification status please click on the following link: https://www.schellman.com/certificate-directory?certificateNumber=1985896-4
ISO/IEC 27001
ISO/IEC 27001 is a specification for an information security management system (ISMS), which is a framework for an organization's information risk management processes.
This certification covers all our products, major locations supporting the development, maintenance, operations, support, and services in the following locations:
- Austin, Texas
- Charlotte, North Carolina
- Reston, Virginia
- Brno, Czech Republic
- Cork, Ireland
- Krakow, Poland
- Taguig City, Philippines
- Bengaluru, India
To verify certification status please click on the following link: https://www.schellman.com/certificate-directory?certificateNumber=1985896-4
Next Feature: