Everything your security review will ask, answered in one page.

Access

SSO with MFA enforced across all production systems. Hardware keys for admin roles. Role-based access reviewed quarterly. Joiner-mover-leaver runbook with same-day deprovisioning. No shared accounts, ever.

Code and change management

Required peer review on every change. Branch protections, signed commits, dependency scanning (Snyk + GitHub Advanced Security), secret scanning, container image signing. No direct pushes to main. Production deploys gated by automated tests and manual approval for high-risk paths.

Infrastructure

AWS primary, GCP and Hetzner for specific workloads. Terraform for everything. Private subnets by default, public only where intentional. VPC flow logs, GuardDuty, CloudTrail to immutable S3 with object lock. Daily encrypted backups with quarterly restore drills.

Encryption

TLS 1.3 in transit, AES-256 at rest. Customer-managed KMS keys available on Enterprise. Field-level encryption for PII and PHI workloads.

Penetration testing

External pen-test annually by an independent CREST-accredited firm. Quarterly internal red-team exercise by our own Stinger Security team. Continuous bug bounty via HackerOne for production properties.

Vulnerability management

Critical CVEs patched within 24 hours of disclosure. High within 7 days. Medium within 30. SLA tracked publicly on status.plutobee.com.

Incident response

24/7 on-call rotation with documented runbooks. First customer notification within 24 hours of confirmed material incident. Post-incident report within 5 business days. We do not blame, we fix and document.

Business continuity

Multi-region active-passive failover. RTO 4 hours, RPO 15 minutes for tier-1 systems. Tested quarterly. Annual full DR drill.