OceanoBe Software Environment and security testing are a priority for all software solutions built by our team. From step one, initial engagement with the client throughout the entire SDLC, we are making security our number one priority. In order to do so, we use Static Application Security Testing (SAST), automatic vulnerability scanning tools (Nessus) Dynamic Application Security Testing (DAST) combined with our team’s expertise. We analyze and assess the security controls and their efficiency.
Creating a safe environment in our delivery process, cloud infrastructure, and management functions is a top priority for our team. We perform risk modeling and assessment on the customer’s user-cases and workloads and we are also working with the customer's own 3rd parties for external penetration testing. OceanoBe team is trained in relevant compliance and controls, all to make sure that the protection of information, assets, and systems is managed accordingly. All these activities are independent of the selected cloud platform.
OceanoBe has a particular way in approach when designing secure software services in the cloud. We use fundamental security design principles:
- Implementation of a strong identity foundation;
- Enable traceability;
- Apply security on all layers in the stack;
- Automation of the security best practices;
- Protection of data at-rest and in-transit;
- Preparation for security events.
When it comes to areas of security focus we include the following: identity and access management, access control, infrastructure and data protection, incident response, detective and preventive controls, and also controls for integrity and availability. Regarding the configuration to accomplish an in-depth defense on the platform all relevant network, application, data, and behavioral security controls are configured. This includes: Network Isolation, Application Level Thread Detection, Distributed Denial of Service Protection (DDoS), Long Aggregation and Analysis, Authentication and Encryption.
Regarding the Landing Zones we insure protection of all layers across the platform using built-in cloud services as well as trusted services from 3rd parties. For example taking AWS we can list things such as Config and CloudWatch, Guard Duty, KMS, IAM (with MFA), CloudTrail, Trusted Advisor, Lambda or more to make sure that we have a tamper-proof environment.
Why choose the OceanoBe Software Environment? Because OceanoBe is dedicated to creating a safe environment for your software solutions applying a security design specific for the needs and particularities of your company. In addition to the OceanoBe Software Environment services, our DevOps assistance include both support and release management solutions.