N-able Signs the CISA Secure by Design Pledge

BURLINGTON, Mass.--(BUSINESS WIRE)--N-able, Inc. (NYSE: NABL), a global software company helping IT services providers deliver remote monitoring and management, data protection as-a-service, and security solutions, today expanded its ongoing efforts to bolster the company’s cybersecurity posture, and in turn its partners and their customers, by signing the Cybersecurity and Infrastructure Security Agency (CISA) Secure By Design Pledge.

N-able was part of the first group of companies committed to the pledge and is currently the only vendor signed up with an ecosystem that is built from the ground up with MSPs in mind. The CISA pledge is taken by companies who are committed to making a good-faith effort to work towards increased security and transparency within the next year. By signing the pledge, N-able is further prioritizing security in its products and services, while building on its defenses against cyberthreats. The CISA pledge also points to the added safeguarding N-able is placing on its MSP partners’ data and the products and services they offer to their customers.

“Signing the Secure by Design pledge reaffirms our commitment to fundamentally integrating security into every stage of our development lifecycle. This approach is not simply about compliance; it's about leadership in creating technology that can withstand emerging threats,” said Dave MacKinnon, Chief Security Officer at N-able. “We are dedicated to transparency, continuous improvement, and collaboration with industry partners and stakeholders. This pledge underscores our determination to build trust and constantly advance security in every piece of technology we deliver.”

The CISA Secure by Design Pledge is a voluntary initiative to promote integrating robust cybersecurity practices into product development and service offerings. The goals outlined in the pledge include:

• Increasing the use of multi-factor authentication (MFA)
• Decreasing the use of default passwords
• Reducing the “prevalence of one or more vulnerability classes across the manufacturer’s products”
• Increasing the installation of security patches by customers
• Publishing vulnerability disclosure policies that authorize testing by customers and provide a “clear channel” to report vulnerabilities, as well as publicly disclose them “in line with coordinated vulnerability disclosure best practices and international standards”
• Reporting accurate “Common Weakness Enumeration (CWE) and Common Platform Enumeration (CPE) fields in every Common Vulnerabilities and Exposures (CVE) record for the manufacturer’s products”
• Increasing the “ability for customers to gather evidence of cybersecurity intrusions affecting the manufacturer’s products”

More information about N-able security solutions can be found here.

About N-able

N-able fuels IT services providers with powerful software solutions to monitor, manage, and secure their customers’ systems, data, and networks. Built on a scalable platform, we offer secure infrastructure and tools to simplify complex ecosystems, as well as resources to navigate evolving IT needs. We help partners excel at every stage of growth, protect their customers, and expand their offerings with an ever-increasing, flexible portfolio of integrations from leading technology providers. n-able.com

© 2024 N-able Solutions ULC and N-able Technologies Ltd. All rights reserved.

The N-able trademarks, service marks, and logos are the exclusive property of N-able Solutions ULC and N-able Technologies Ltd. All other trademarks are the property of their respective owners.

Category: Company