Security

Keeping your investment management solution secure

Learn how we keep security top-of-mind with software design and cyber resilience

SimCorp has made security the foundation of its product and service offerings by providing several capabilities and processes to maintain privacy and control network access including firewalls, encryptions and various connectivity options meeting the requirements of the most security-sensitive organizations.

Software Design

Software development life cycle (SDLC) is the framework that defines the process used by organizations to build applications from inception to end-of-life. The governance of software quality of SimCorp Dimension is based entirely on the Scaled Agile Framework (SAFe) developed and maintained by Scaled Agile, Inc.

Further to our use of SAFe agile as the SDLC framework, SimCorp incorporated additional practices to integrate security activities across the SDLC to help discover and reduce vulnerabilities early, effectively building security in. A secure SDLC process ensures that security assurance activities such as penetration testing, code review and architecture analysis are an integral part of development efforts.

We highly value security disciplines, training of our software engineers etc. and they are part of our culture.

SimCorp Dimension as a Service

Ensuring cyber resilience

SimCorp engages external independently vetted penetration testing partners to evaluate the security of the applications and its hosted environments. Penetration testing is used as part of an ongoing structured program of security assurance activities to ensure an appropriate level of cyber resilience. The penetration testing executive reports are tailored to translate complex technical risks into business terms