Excluding physical security, which is a customer responsibility, Dell has end-to-end responsibility for the security of the onsite management stack, including:
- Infrastructure Security (Compute, Storage, and Network Security): Dell installs and maintains the infrastructure according to its policies. These include host security hardening configurations, anti-malware protection, maintaining up-to-date device firmware, and performing regular vulnerability scanning.
- Software Security: The logical security of the onsite management stack and its APIs are owned, operated, and maintained by Dell, and contain Endpoint Security Suite (EPS) and Endpoint Detection and Response (EDR).
- Other security capabilities of the management stack include vulnerability scanning, logging, monitoring, hardening, and updating security patches.
- All security capabilities of the management stack are installed, operated, and monitored by Dell.
- Only approved and certified Dell support engineers can operate the management stack.