Welcome CISOs

On this page, you will find important information about how we at GX handle the provision of information regarding cybersecurity and compliance. As a Chief Information Security Officer, it is essential to stay up-to-date with the latest developments and recommendations to keep your organization secure.

What is a CVE?

A CVE (Common Vulnerabilities and Exposures) is a unique identification code assigned to known cybersecurity vulnerabilities. These codes are managed by the CVE program and help organizations identify, prioritize, and address vulnerabilities in software and systems. How GX specifically handles this is explained here.

How do you subscribe to information about this?

You can subscribe here to our news feed on CVEs. Click 'Follow' in the top right corner and select 'New Articles'. As soon as a new CVE is identified, we will publish an article with our recommendations. This is a live blog, which means we publish information in near real-time. More information about this process can be found here. An example of how we handled a major global vulnerability (Log4Shell) can be seen here.

Overview of CVEs

As a leading software company, we closely monitor the latest CVEs (Common Vulnerabilities and Exposures). CVEs are unique identification codes for known vulnerabilities in software and systems. By tracking CVEs, we can respond quickly and provide our clients with the most recent security recommendations. For a complete overview of the CVEs we are currently working on and our corresponding advice, we kindly refer you to our dedicated CVE page.

Certificates

GX offers a number of certificates that demonstrate our professional practices. These certificates are available upon request and can be sent to you.

TPM

A TPM (Third Party Memorandum) is a statement from an independent auditor that annually confirms that our internal control systems and processes comply with the stated requirements. We have our TPMs issued by EY, a leading accounting firm.

ISO-27001

ISO-27001 is an internationally recognized standard for information security. This standard provides guidelines for establishing, implementing, maintaining, and continuously improving an information security management system within an organization. GX is ISO 27001:2022 certified.

Receive a certificate?

Would you like to receive one of our certificates? Send a message to Customer Services. They will be happy to assist you with your request.

More information or special requests?

We hope this information helps you in carrying out your duties as a CISO. If you have any further questions, please do not hesitate to contact us.