...
| Expand | ||
|---|---|---|
| ||
Does your organisation validate all data inputs and outputs to and from its applications? Yes, in majority of cases. We have some free text inputs which do not require validation. There is a profanity / abuse / personal information checker on free text inputs but this does not use form validation. More information: https://commonplace.atlassian.net/l/cp/P1EHRM0T |
| Expand | ||
|---|---|---|
| ||
Does your organisation conduct threat modelling during the design phase of an application or system build? We maintain a security risk level indicator in all Jira tickets around data protection and info security from the point the Jira ticket is created. |
...