- We run application-level scans at least quarterly, and typically much more frequently, i.e., with each major release, which occurs about once a month.
- We use ZAP and Vooki, both are commercially available independent vendors.
Results and Remediation
- After identifying and prioritizing risks, our VP of Product commits fixes to remediate the issues in our source code and / or configuration.
- The VP of Product and CEO both have to sign off on all remediation Results
Most Recent Scan
- The most recent scan date and its results are available by request