For Cybersecurity compliance we need to produce a Software bill of materials. As far as I can see this is also applicable for US companies under EO 14028: Improving The Nation’s Cybersecurity was issued by the US government on May 12, 2021.
I have looked for it on the Pega website, but I was unable to find it.
Can someone at Pega direct / provide me with this information?
@MariovdH are you after details of third-party tools used within our software?
Please take a look here for details of Security Assessments: Responsible Disclosure Policy
Pega Cloud has received the Trusted Information Security Assessment Exchange (TISAX) AL2 Assessment, which confirms that Pega Cloud meets high standards of data protection. Pega also permits Pega Cloud clients to conduct security assessments for applications on Pega Cloud. However, specific documentation related to the cybersecurity assessment of third-party components used by Pega is not mentioned in the provided context.
This is a GenAI-powered tool. All generated answers require validation against the provided references.
Vulnerability testing policy for applications on Pega Cloud
Vulnerability testing process for applications on Pega Cloud
Pega Cloud 2 enhancements > Q1 2022 enhancements { .section}
I suggest that you get in touch with your Pega Account Executive in order to determine who to direct your question to.