Hello Atlassian Cloud Security Program

 

This week Atlassian launched their Cloud security program with only 15 vendors making the grade. We are pleased to announce we are one of them! This means we are the only BDD vendor to get the all important security tick, and demonstrates our commitment to following good security practices.


What is Atlassian's Cloud Security program?

Security is an important concern to any Cloud customer, and something Atlassian have taken very seriously. But how do you deal with security when you have 3rd party vendors producing add-ons for your Cloud products? How do you know the vendor implements good security practices?

The Cloud Security Program is a collaboration between Atlassian and add-on vendors to increase security awareness and improve security practices. The goal is to increase customer confidence in add-ons and provide them with the necessary information to perform security evaluations. The current program involves an annual security self-assessment that Atlassian reviews and approves.  The approved application expires after one year and vendors must re-apply with updated information each year.  During approval, Atlassian works with the vendor to pin-point vulnerabilities and identify improvements. 

See the full security programme


How do you know if an Add-on or Vendor is compliant?

Every add-on listing on the Atlassian Marketplace has a "Security and privacy" section on the right-hand side. 

 Security and privacy. Vendor policy provided - third party software is not covered by Atlassian privacy policy. Please refer to the vendor’s policy. Clould security compliant - Cloud developers are encouraged to comply with Atlassian authentication guidelines, data storage guidelines, and the cloud security program. This vendor complies.

Any Addon/Vendor complying with the Cloud Security program will have a blue tick next to the "Cloud security compliant section"


You may also like…