...
| Expand | ||
|---|---|---|
| ||
Does your organisation conduct regular external automated vulnerability scans of its public facing IT infrastructure and remediate any findings? Yes. We utilise a number of security and vulnerability monitoring tools as part of our development process. These tools check things like the code we have written, third-party software and libraries in use and provide real-time feedback when any issues are detected. In addition to this we also run tools such as Dependabot that continuously reviews source code for dependencies requiring patches or updates. More information: https://commonplace.atlassian.net/l/cp/D1kyCKhp |
| Expand | ||
|---|---|---|
| ||
Does your organisation conduct regular penetration tests of its public facing IT infrastructure? Annual penetration testing is completed via a third party provider. Any identified issues are assessed to understand severity within the context of the Commonplace platform and then fixes incorporated into our development lifecycle as required. |
...