Security is high on everyone’s agenda when considering cloud solutions. ManageEngine provides IT management solutions to millions of users worldwide. Therefore, security is a key component in all their offerings, and is reflected in their people, processes, and products. But just how is the ManageEngine cloud solutions security managed?


Security Policy

Physical and operational security involves a number of security practises, policies and infrastructure considerations. The security strategy is organised in to the following components:

  • Organisational security
  • Physical Security
  • Infrastructure Security
  • Data Security
  • Identity and access control
  • Operational Security
  • Incident management
  • Responsible disclosures
  • Vendor Management
  • Customer controls for security

Full details of how each of these components is addressed please see here.

Datacenters and Resilience

The location and availability of a vendor’s datacenter is an important consideration for choosing a cloud solution. ManageEngine cloud solutions are available on a global infrastructure which uses multiple datacenter locations to meet the needs of local country and regional security considerations.

To locate your nearest datacenter is located please see here.

Real-time ManageEngine Cloud service availability is available here.

Compliance

Meeting industry standards and compliance lends confidence to a vendor’s capabilities. ManageEngine have a dedicated compliance team to ensure compliance with a range of industry standards and certifications.

For further details please see here.

Encryption

Being entrusted with customer data is never to be taken lightly. Along with other elements of security, policy and procedure, encryption plays a pivotal role in securing that data.

See how data encryption is employed here.

Anti-Spam

Malware could be targeted either against or spread via the ManageEngine ecosystem. As a result, ManageEngine actively monitors their environment to prevent the spread of unwanted or malicious content.

View details of the anti-spam policy here.

Responsible Disclosure

ManageEngine actively engages with the wider IT security community and IT security researchers. For that reason they are committed to resolving any verified security vulnerabilities in their solutions.

If you happen to find any, please submit the issues at https://bugbounty.zoho.com. To report vulnerabilities directly please e-mail security@manageengine.com.


If you need any more information or have any additional questions please feel free to contact us here.

This article is relevant to:
CompanyIT SecurityManageEngine

You may be interested in these other recent articles

Get to building your business apps with the new AppCreator

9 June 2022

ManageEngine’s new low-code application development tool Creating an application, building one and deploying it can be expensive and time consuming as you have to make…

Read more

Endpoint Central’s Endpoint Security

31 May 2022

Endpoint Central (formerly Desktop Central) not only got a name change but has also introduced Endpoint Security to help organisations keep their endpoints secured. According…

Read more

Automation in ManageEngine ServiceDesk Plus

20 December 2021

Increasingly customers are looking to automate repetitive and mundane tasks in ServiceDesk Plus. Since the introduction of Deluge, Zoho’s online scripting language, as part of…

Read more

Update on the recent Apache Log4j2 vulnerability – Impact on ManageEngine on-premise and Zoho cloud products

14 December 2021

A high severity vulnerability (CVE-2021-44228) impacting multiple versions of the Apache Log4j2 utility was disclosed publicly on December 9, 2021. The vulnerability impacts Apache Log4j2…

Read more

Who do I contact for technical support for my ManageEngine product?

10 September 2021

When purchasing a ManageEngine product it will either have been supplied on a subscription basis or it would have included an initial Annual Maintenance and…

Read more

ManageEngine ServiceDesk Plus

Full Archive Directory

Instant Access