cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Share your feedback on the Document Scanning Experience in the Dropbox App right here.

Security and Permissions

Start a discussion in the Dropbox Community forum to get help with your account security and permissions. Find support from Community members.

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Security Measures Practiced By Dropbox

Security Measures Practiced By Dropbox

JAC59
Explorer | Level 3
Go to solution

My very small company uses Dropbox for our work files storage.  We have been asked by a new customer IT audit to provide evidence of "our" penetration testing (how often done, provide a redacted report if we're using a 3rd party provider for our data storage)  and vulnerability management practices.  I am trying to find anything specific to these topics that Dropbox does on a daily or continuous basis, so I can reply to the survey.  We don't do these things for ourselves and have told the new customer that we use a 3rd party provider to store data.  Thanks for any help!

1 Accepted Solution

Accepted Solutions

Rich
Super User II
Go to solution

@JAC59 wrote:

I am trying to find anything specific to these topics that Dropbox does on a daily or continuous basis, so I can reply to the survey.


Refer to the following help article:

 

View solution in original post

4 Replies 4

Rich
Super User II
Go to solution

@JAC59 wrote:

I am trying to find anything specific to these topics that Dropbox does on a daily or continuous basis, so I can reply to the survey.


Refer to the following help article:

 

JAC59
Explorer | Level 3
Go to solution

Hi, Rich,

 

Thanks very much for your help!

 

I was hoping that there might be some more technically-detailed statement available from Dropbox such as "we do penetration testing of all of our server. sites in accordance with XYZ standard every X days (or continuously, or whatever).  Identified vulnerabilities are ranked as to their risk and resolved as soon as possible".

 

What you provided is probably as good as it's going to get for a small user like me.  I'm very happy with Dropbox and have been a customer for a long time, and having to answer a question like this for a customer's IT survey is pretty unusual. 

 

Thanks again!

Rich
Super User II
Go to solution

@JAC59 wrote:

... having to answer a question like this for a customer's IT survey is pretty unusual.


Get used to it! We get requests like that all the time from our customers, especially for government work (DFARS/NIST is a PITA!).

JAC59
Explorer | Level 3
Go to solution

Haha, yes indeed.

 

Thanks again for your help!

Need more support?
Who's talking

Top contributors to this post

  • User avatar
    JAC59 Explorer | Level 3
  • User avatar
    Rich Super User II
What do Dropbox user levels mean?