At EdgeVerve, we are committed to providing tailor-made comprehensive automation security solutions with ‘AssistEdge for Security.’ Our security automation solution is designed to accelerate organizational security, delivering value across customer assets.

Delivering an enterprise-grade product assuring security of customer assets covering hardware, software, and data.

Our 4 pillars of holistic & comprehensive approach to security

Application

Product adheres to best-in-breed application design principles

  • Least-privilege and strict role-based access
  • Standards compliance SAML, OIDC, etc.
  • OOTB Credential Mgmt. system Audit logging app actions
Operations

Innovative & contextual IP features for operations security

  • Controlling machines running automations
  • Audit logging RPA transactions for traceability
  • Fortify Operations security controls in the product
Infrastructure

Infrastructure security is critical and is well covered via standard features

  • Support for HTTPS (including disabling lower protocols)
  • Support for both Last mile encryption and SSL termination
  • Hardened OSS components – switching off not needed features
SDLC

Strong and secure software development methodology covering guidelines

  • EdgeVerve is an ISO-27001 company having
  • Six stage Testing process
  • Automated tool based validations
  • Independent certification of a product via engagement of an external vendor

Application Security

Holistic coverage across all users & personas

Comprehensive and all-inclusive authentication & authorization support across all user profiles and personas.

  • OOTB integration with User Accounts in Active Directory
  • Support for SAML and OpenID Connect protocols
  • Support for CyberArk based authentication implementations
  • Supports extension of Auth&Auth schemes based on customer policies
  • Strict enforcement of role-based access for all Platform functionality
  • RPA Functionality modeled as permissions, associated with Roles
  • Role definition is configurable [shipped with best practice based optional defaults]
  • User – Role management can be externalized [OKTA like products]
Managing credentials & encryption keys

Secured access to highly sensitive information is now possible!

Contextual and deep functional solutions ensuring complete protection and control of sensitive information in the hands of the customer.

Automation credential

  • OOTB Automation Credential Management with strong AES-256 encryption
  • Extensible behavior to fetch from data store as per customer policies (Cyber Ark)
  • In-transit credentials encrypted through secure protocols
  • SAML/OIDC support extended for Robot authentication.

Encryption key

  • Encryption key in complete control of the enterprise
  • Update encryption key at regular intervals as per customer policies
  • Flexible choice of key storage and retrieval via extensible APIs
  • Stored encryption key is protected through KEK

Operations Security

Automation machine control & detailed audits

Business gets complete control of automation assets, and also each platform actions are logged and traceable, complying with the strictest audit norms.

Controlling bot machine
  • Business users get complete control of VM running automations
  • Options to switch VM modes from Production, Watch and debug
  • Options to generate alerts on status change of VMs
  • Audit trail of machine mode changes

Focus on compliance and privacy controls

Ensures compliance to standards like GDPR by providing privacy control-related capabilities out-of-the-box.

Privacy controls

  • Masking PII and anonymizing business data
  • Accommodating human intervention in automated decision making (Albie)
  • Customizations to allow appropriate data validation rules
  • Documented processing of data flow across product components
  • Support to retain, extract, notify or delete generated data

Infrastructure Security

Enforcing best practices and principles

Allows organizations to deploy the platform in-line with industry best practices and configure based on SOE.

Supports all deployment models

For e.g. Encryption till last mile & SSL termination @ proxy

Strict enforcement of TLS1.2

Strict enforcement of TLS1.2 on each component

Hardened OSS components

Components bundled and shipped with the product

Defined ports and protocols (WAF)

Defined set of ports and protocols for intra-server communications

Layered architecture

Segregate standard web, app, and database layers
Recommended by AssistEdge

Detailed and comprehensive secure deployment guidelines allowing risk-free deployment of the platform at scale.

Secure with compensating controls

Infrastructure should be secured with compensating controls like Web Application Firewalls

Use commercial SSL certificates

Commercial SSL certificate which supports no less than 128-bit encryption should be used

Adopt key rotation policy

Key rotation policy should be adopted to refresh encryption keys

Controlled & audited access

Controlled & audited access to infrastructure running product components

Regular audits and scans

Regular audits and scans of provisioned infrastructure and components

Security in Development: Release gates and secure SDLC

Our products go through watertight assessment as part of our Secure Development Approach. Every product release goes through an independent stringent six-pronged security assessment:

We use cookies to personalize content and ads, to provide social media features and to analyse our traffic. We also disclose information about your use of our site with our social media, advertising and analytics partners. Additional details are available in our Cookie policy.

Accept Cookies