HCL SW Blogs
HCL SW Blogs
Select Page
Automation
  |  December 17, 2020

HCLSoftware has implemented top security practices and certifications to ensure the security and integrity of BigFix products 

Dan Wolff
Dan Wolff
Director of Solutions and Product Marketing for BigFix
HCL Software has implemented top security practices

HCLSoftware is committed to delivering secure products to our customers. In support of this commitment, we have long utilized an Information Security Management System (ISMS) to drive consistency in approach across all of our products and services, per the ISO/IEC 27001 standard. For more information about HCLSoftware certifications and the ISMS, visit https://www.hcltechsw.com/legal/compliance. 

In our development processesall production software and content releases undergo the secure final mile process prior to release which includes PenTest+ penetration testing, static and dynamic scans, open source scans and 3rd Party Vendor Ethical hacking to ensure the security and integrity of the BigFix product. 

We are committed to delivering products which meet the stringent U.S. Federal government standards for secure supply chainHCLSoftware has a U.S. Federal Government approved Product Integrity Policy. The policy is enforced by HCL’s U.S. Federal Government approved security officer, and U.S. Federal government approved 3rd party monitor.  

 BigFix is compliant with: 

  • Common Criteria – is an international standard for computer security certification. It is used as the basis for a government-driven certification scheme. Evaluations are typically completed for the use of Federal Government agencies and critical infrastructure.  
  • ISO 20243 – a framework to address the problem of maliciously tainted and counterfeit products. It is a set of guidelines, requirements, and recommendations that address specific threats to the integrity of hardware and software products throughout the product life cycle. For more information, refer to FAQ #6 about our supply chain: https://www.hcltechsw.com/about/faqs . 

We remain vigilant in maintaining security of our software, data and systems, and complying with important international and national security standards.  We do this to protect our company as well as our customer’s businesses. 

For more information 

To learn more about BigFix, visit www.BigFix.com or contact your HCLSoftware Specialist. For further information about how BigFix can be used to find and mitigate this threat, contact your BigFix Technical Advisor. 

 

 

 

Comment wrap
Dan Wolff
Dan Wolff
Director of Solutions and Product Marketing for BigFix
Dan Wolff is the Director of Solutions and Product Marketing for BigFix, responsible for all global go-to-market strategy and programs. Previously, he was Director of Cloud Security Product Management in IBM’s Security Division, driving new cloud security offerings from concept to launch across IBM. Previously, Dan was McAfee’s Director of Products for Endpoint Security, responsible for enterprise endpoint security products. He is a recognized security expert with over 18 years of security product management and product marketing experience.
Read more

Topics in this article:

BigFixFederalPolicySecurity

Submit a Comment

Your email address will not be published. Required fields are marked *

* HCL provides software and services to the U.S. Federal Government through its partner Four, Inc. Please contact Four, Inc. at the U.S. Federal Government contact page.


Further Reading
bigfix
bigfix
Consolidating tools can help in uncertain economic times
Automation | March 27, 2023
Consolidating Tools Can Help in Uncertain Economic Times
“IT tool consolidation” refers to the process of streamlining an organization's technology stack by reducing redundancies and consolidating similar tools into a single platform.
Cyril Englert
Cyril Englert
Solution Architect
bigfix
bigfix
BigFix on Cloud
Automation | February 20, 2023
Accelerate Your Endpoint Management with BigFix on Cloud
As endpoints continue to grow in volume and diversity, managing and securing them has become more complex and time-consuming.
Deepika Choudhary
Deepika Choudhary
bigfix
bigfix
Oracle Increases Prices for Java
Automation | February 8, 2023
Oracle Increases Prices for Java – Look to BigFix for a Solution
To help our customers navigate this Oracle change, BigFix Inventory can identify which machines have Oracle Java to avoid unexpected license compliance issues.
Sana Nair
Sana Nair
Product Marketing Manager
Close
Filters result by
Sort:
|
ProductsRESET