Genesys Engage on-premises

 View Only
Discussion Thread View
  • 1.  Secure code compliance of Engage applications

    Posted 07-25-2022 11:05
    Hello,
    One of our customers is requiring evidence about how Genesys Engage provide security compliance in the base codes of the suite. So I am looking for certificates compliance like ISO27001, PCI-DSS and so on.
    Also is requiring control reports of SSAE-18 SOC 1 and SOC 2.
    Finally is requiring annual test report static manual and/or automated scanning of the application source code of the suite.

    Hope someone help me.

    Regards,
    Jorge L.
    #Security

    ------------------------------
    Jorge Lopez
    SRL Soluciones e Implementaciones, S.A. de C.V.
    ------------------------------


  • 2.  RE: Secure code compliance of Engage applications

    Posted 07-26-2022 08:48
    Hi Jorge

    If you are parner, you could find some info on customer care, documentation portal and partner portal. If it is not enough I suggest you open a case with customer case or ask to you Genesys CSM.

    For Genesys engage there some guides but you should take a look to each doc solution to get more details according to your customer scenario. I brief of what I found:
    "
    Security and Standards Compliance

    The Genesys suite of products is designed to make up part of a fully functioning contact center solution, which may include certain non-Genesys components and customer systems. Genesys products are intended to provide customers with reasonable flexibility in designing their own contact center Solutions. As such, it is possible for a customer to use the Genesys suite of products in a manner that complies with the security-related business standards such as General Data Protection Regulation, ISO 27001/27002 (formerly 17799), HIPAA, PCI DSS etc. However, the Genesys products are merely tools to be used by the customer and cannot ensure or enforce compliance with these standards. It is solely the customer's responsibility to ensure that any use of the Genesys suite of products complies with these business standards. Genesys recommends that the customer take steps to ensure compliance with these business standards as well as any other applicable local security requirements.

    Our Pure Engage Cloud infrastructure is compliant with industry standards such as PCI DSS, SOC2 Type II, ISO 27001, and HIPAA.

    "

    Links:
    https://docs.genesys.com/Documentation/System/8.5.x/SDG/SDG

    https://docs.genesys.com/Documentation/System/8.5.x/SDG/Welcome

    https://docs.genesys.com/Special:Repository/Genesys%20Engage%20cloud%20User%20Guide.pdf?id=&page=Documentation%2FPSAAS https://docs.genesys.com/Documentation/System/8.5.x/SDG/Welcome https://docs.genesys.com/Documentation/System/8.5.x/SDG/SDG https://help.mypurecloud.com/articles/about-security-and-compliance/" target="_blank" rel="noopener">https://docs.genesys.com/Special:Repository/76g_dep-security.pdf?id=728eb0d1-91a9-4613-b31d-c9ce1f939544&page=Documentation%2FSystem

    https://docs.genesys.com/Special:Repository/Genesys%20Engage%20cloud%20User%20Guide.pdf?id=&page=Documentation%2FPSAAS

    For Genesys Cloud:
    https://help.mypurecloud.com/articles/about-security-and-compliance/

    Hope it helps you

    Regards,
    SG

    ------------------------------
    Saugort Garcia
    Interacciones Inteligentes S.A.
    ------------------------------



  • 3.  RE: Secure code compliance of Engage applications

    Posted 07-26-2022 12:22
    Hi Saugort, Thank you so much for your reply.

    Regards,

    ------------------------------
    Jorge Lopez
    SRL Soluciones e Implementaciones, S.A. de C.V.
    ------------------------------