In fairness to Delinea I think they have got on top of this really well now. The remediation guide is top tier.
They probably want to have a look at their CMS setup for their online portals, eg the podcast and marketing content is really well search engine optimised, but the security content (including responsible disclosure policy) is on a platform which is really search engine unfriendly - most of it is so buried I can’t even find it via Google, I think they might be blocking it by mistake.
All of Delinea’s product and cloud security info is on trust.delinea.com - but only the front page is indexed by search engines, there’s only two results. They block pages off using robots.txt - including how to report vulnerabilities.
@GossiTheDog If only the Chief Security Scientist and Advisory CISO at Delinea had had an opportunity to listen to that episode, maybe they would have been better off!
@dmaonR@GossiTheDog I agree. it's also not indexed and you can't google for it. Also I have to assume it's only there for ISO 27001 compliance and not because they use it, when even their support staff doesn't know about their policies and processes concerning security.
Add comment