M7 Application & Data Security
Application Security
Data Security
Infrastructure Security
Third-party Application security
firewall level rules configurations,
active directory implementation
secure http (https), SSL certificates
OS upgrades and patching
Authentication & Authorization, SSO, Identity server
Prevent OWASP Vulnerabilities
Logging and Auditing
Role based access control (RBAC)
Vendors / Resellers --> whitelisting ips to use m7clip API services to talk with ICX
M7 Security configuration management
Code-Level Security
Customers' password, bank details and sensitive information - Encryptions
Masking of data
secure data at transient
secure data at rest
rate limiting & ddos attack prevention, reverse proxy
Solocco app communicated using SSO
Emarsys & CM-SMS for email & sms sending