Security Portal

Get access to this Security Portal
  • Review sensitive security details
  • Unlock documents
  • Submit security questionnaires
  • Ask for more information
Had access before? Reclaim access

Overview

Our mission is to raise the world's security confidence. And we are disrupting the cybersecurity status quo with the speed and simplicity required to outmaneuver attacks while rewriting the rules for how resilient infrastructure can be.

The Automox team has over three decades of operational experience designing and securing multi-tenant cloud and internet applications at scale. Our team comes from some of the most successful and sought after internet companies including, SendGrid, SolidFire, StillSecure, and LeftHand Networks. All team members undergo mandatory background checks prior to employment.

Compliance

CSA STAR Logo
CSA STAR
GDPR Logo
GDPR
SOC 2 Logo
SOC 2
Get access to this Security Portal
  • Review sensitive security details
  • Unlock documents
  • Submit security questionnaires
  • Ask for more information
Had access before? Reclaim access
5 Documents
Pentest Report
SOC 2 Report
SOC 2
CAIQ

Risk Profile

Data Access LevelInternal
Impact LevelSevere
Recovery Time Objective24-48 Hours
See more

Product Security

Role-Based Access Control
Audit Logging
Data Security
See more

Reports

Network Diagram
Pentest Report
SOC 2 Report
See more

Self-Assessments

CAIQ

Data Security

Access Monitoring
Backups Enabled
Data Erasure
See more

App Security

Responsible Disclosure
Code Analysis
Software Development Lifecycle
See more

Access Control

Data Access
Logging
Password Security

Infrastructure

Amazon Web Services
Infrastructure Security
Separate Production Environment

Endpoint Security

DNS Filtering
Endpoint Detection & Response
Mobile Device Management
See more

Network Security

Firewall
IDS/IPS
Spoofing Protection
See more

Corporate Security

Email Protection
Employee Training
Incident Response
See more

Policies

Other Policies

Security Grades

ImmuniWeb
Console
A-
Qualys SSL Labs
Console
A+

Trust Center Updates

Automox is not affected by CVE-2022-3602 and CVE-2022-3786

After careful review of our infrastructure and SBOM, the Automox team has determined that we are not currently vulnerable to the OpenSSL 3 vulnerabilities CVE-2022-3602 and CVE-2022-3786 that were disclosed on November 1, 2022.

Published at 11/02/2022, 9:53 PM

Automox is not affected by the new Microsoft Exchange Zero-Day

On Sept 29th, News broke of a new ProxyLogon 0-day RCE being used to target Microsoft Exchange Servers. Automox is not affected at this time.

Published at 09/29/2022, 10:01 PM

Automox is not affected by Confluence CVE-2022-26134

On June 2, 2022, Atlassian published a security advisory for CVE-2022-26134, a critical unauthenticated, remote code execution vulnerability in the products Confluence Server and Confluence Data Center. The vulnerability is unpatched as of June 2 and is being exploited in the wild. Automox is not affected by this CVE.

Published at 06/03/2022, 2:53 PM

Automox is not affected by Python and PHP's Recent Hijackings

News broke recently surrounding two open source packages that were hijacked. Python's ctx library and PHP's phpass. Automox does not utilize these packages anywhere in our product or services.

Published at 05/25/2022, 4:51 PM

Automox is not affected by VMSA-2022-0014

CISA has issued Emergency Directive (ED) 22-03 and released a Cybersecurity Advisory (CSA) in response to the active and expected exploitation of multiple vulnerabilities in the following VMware products: VMware Workspace ONE Access (Access), VMware Identity Manager (vIDM), VMware vRealize Automation (vRA), VMware Cloud Foundation, vRealize Suite Lifecycle Manager.

Automox does not currently use any of these VMware products in the delivery of our products or services.

Published at 05/24/2022, 2:33 PM