deepwatch aims to reduce the risk of security bugs and other vulnerabilities via vulnerability assessments, penetration tests, and code reviews. The findings from each of these activities is used to inform
deepwatch currently performs internal vulnerability scans on a daily basis, which will necessarily include scanning after significant changes to the deepwatch networks. VM agents are installed as part of our default configuration on both laptops and servers.
deepwatch utilizes both internal resources and independent third-party penetration testing firms to conduct penetration testing, both internal and external, on its systems components. The testing included an External Penetration Test of internet-facing network assets and Internal and Segmentation Penetration Tests for deepwatch’s Cloud SecOps Platform Services environment.
deepwatch conducts code reviews via a continuous integration process on every merge into a branch across all repositories. Code is tested (via Static & Dynamic Analysis, Unit Test, Integration Test, Functional Test, Performance, and Security) throughout every step of the development process.
In addition, we engage third party auditors and penetration testers to perform security reviews on our products.