Security audit confirmed the reliability of our service

With the growing number of Vibemetrics users, it was high time to ensure the security of our service with an external team of experts. In spring 2017, we hired Second Nature Security, a domestic cybersecurity company, to perform a security audit for Vibemetrics.

The audit, which was based on OWASP and OSSTMM guidelines, among others, attempted to break the service and search for weaknesses using both manual and automated tools. The methods and tools used in the audit were similar to those used in real data breaches.

As a result of the audit, we received a report in which the security weaknesses found in the service and our server environment were classified according to severity and other characteristics. We were praised for the quality of the service, and also received a small number of corrective actions. We corrected the deficiencies after the audit, and finally the company that carried out the audit verified our correction.

In addition to the official results, the audit provided us with additional experience to support our security expertise. Information security requires continuous learning and development - and we are now even better equipped to do this.