Merge pull request #142 from solarwinds/add-security-policy

Create SECURITY.md

SECURITY.md

@@ -0,0 +1,26 @@
+# Security Policy
+
+## Security at SolarWinds
+
+SolarWinds is committed to taking our customers security and privacy concerns seriously and makes it a priority. We strive to implement and maintain security processes, procedures, standards, and take all reasonable care to prevent unauthorized access to our customer data. We apply appropriate administrative, operational, and technical security controls to help ensure that our customer data is handled and processed in a responsible and secure manner.
+
+Our security strategy covers all aspects of our business, including:
+
+* Corporate security policies
+* Organizational security
+* Physical and environmental security
+* Operational security processes and procedures
+* Incident management and response
+* Business continuity and disaster recovery
+* Data protection
+
+## Security Documents
+[Security Statement](https://www.solarwinds.com/security/security-statement)
+
+[Vendor Data Protection Requirements](https://www.solarwinds.com/security/vendor-data-protection-requirements)
+
+## Vulnerability Disclosure Policy
+[SolarWinds Vulnerability Disclosure Policy](https://www.solarwinds.com/information-security/vulnerability-disclosure-policy)
+
+## Want to report a security concern?
+SolarWinds reviews all reports of security vulnerabilities submitted to it affecting SolarWinds products and services. To report a vulnerability in one of our products or solutions or a vulnerability in one of our corporate websites, please contact our Product Security Incident Response Team (PSIRT) at [[email protected]](mailto:[email protected]).