About the Security Discussions category

This space is for OpenNMS and other organizations to discuss creating and improving cybersecurity programs. It is not about discussing individual vulnerabilities within OpenNMS products (there are other topics for that).

OpenNMS is on a journey toward adoption of ISO-27001/2 for an Information Security Management program, with an ultimate goal of SOC-2 certification. However, this discussion should be useful to anyone concerned about cybersecurity.

As OpenNMS creates security artifacts, they will be shared at GitHub - OpenNMS/security-iso27k: Security Roadmap to ISO-27k. Public submissions are welcome, however, please sanitize any confidential information.

Jeff J.