When having an application in a production environment, it is important to consider those best practices that allow you to rely on an adequate level of security.
Such best practices do not only include the configuration recommendations issued by the vendor of the application, but within these you should also adapt best practices for your infrastructure setup and those that apply to your whole company.
It is recommended to also commit and enforce compliance to the guidelines and procedures as set by the policies and standards related to information security. This way, aspects regarding control, monitoring, auditing, etc, are included as well within the definition of what constitutes application security.
Bizagi is a platform which deploys a Work portal for end users' use. This Work portal is a web application.
Therefore, Bizagi Ltd strongly recommends implementing the necessary measures for application hardening in every project, to mitigate certain risks and vulnerabilities to which web applications are not exempt from.
Follow the detailed recommendations as described in the links below, where these are presented as basic, intermediate or advanced recommendations.
Commonly for projects, most risks are mitigated by carrying out the basic recommendations.