OpenNMS performs cybersecurity risk assessments that encompass our company, our services, and our products. We've shared the risk assessment template with the open-source community on Discourse and GitHub. In addition, OpenNMS now conducts security penetration testing on each significant Meridian release.
Penetration testing is only one component of our security program. We are now enhancing our processes to align with the ISO 27001 security framework. Some of this work includes ensuring that the appropriate people, processes, and technologies are in place to assess cybersecurity risks unique to OpenNMS and our products/projects, and implementing measures to protect, remediate, or recover from those risk events.