Bedrock

Org: CreditMountain

This is a summary of CreditMountain's security practice.

This organization implements logging across its critical systems
This organization implements best practices for data management by keeping production and test data segregated
This organization implements best practices for SSL certificate management to ensure its public certificates are valid for 30 days or more
This organization implements best practices for data management by keeping data backups encrypted
This organization has configured DMARC records for the domains it owns
This organization performs regular scans of its external-facing networks to identify open ports and services and mitigate vulnerabilities
This organization regularly scans its external networks to identify and mitigate vulnerabilities and ensure that best security practices are met and exceeded
This organization regularly scans its public certificates to ensure strong cryptography is used
This organizations redirects traffic from http to https to ensure that web traffic to its assets happen through an encrypted protocol
This organizations performs detailed scans of its SSL certificates to ensure encrypted traffic is secure
This organization has an approved data classification policy
This organization has an approved cryptography policy
This organization has a public terms of use policy
This organization has a public privacy policy
This organization enforces multi-factor authentication controls to protect its source code in version control systems
This organization enforces strong security practices to protect its source code in version control systems