Zoom’s Video Conferencing service has been largely adopted by people across the globe during this pandemic crisis. On April 1, 2020, Zoom pledged to make a number of enhancements to address security and privacy as a 90-day program with 7 commitments. Now the company says it has fulfilled them.
Zoom enacted a 90-day feature freeze on all features not related to privacy, safety, or security. It worked with a group of third-party experts to review and make enhancements to their products, practices, and policies. Zoom made significant progress defining the framework and approach for a transparency report that details information related to requests Zoom receives for data, records, or content.
It has developed a Central Bug Repository and related workflow processes. Zoom launched its CISO council, led by their Global Deputy CIO Gary Sorrentino and composed of 36 CISOs from a variety of industries.
Zoom engaged multiple firms – Trail of Bits, NCC Group, and Bishop Fox – to review its entire platform. Their scope of work covered Zoom’s production environment, core web application and corporate network, and the public API for common clients. It hosted a total of 13 webinars, every Wednesday since April 1st, featuring a number of our executives and consultants who took live questions from the attendees.