The Genesys Cloud platform impressivey meets and exceeds modern security standards with external penetration testing, attack defence automation, and TLS and AES-256 encryption.
All in all, encrypting data at rest is a fundamental design characteristic of the Genesys Cloud platform. Therefore, we secure cloud traffic using TLS encryption and protect customer data via the 256-bit Advanced Encryption Standard (AES) algorithm.
Application security testing occurs throughout the lifecycle. Thus, there is continuous code testing and reviewing during development. Further more, it is done using commercial and in-house toolsets, dynamic code analysis, and third-party vulnerability assessments.
- Development lifecycle security:
Security is embedded in the software development lifecycle at Genesys. An independent product security team uses an agile development process that incorporates security early in the lifecycle, with multiple validation steps. Developers are regularly trained on web application security protocols, including the Security Project (OWASP) and SANS Top 25 common vulnerabilities.