Security
Product Security
Speedscale is designed from the ground up for security. Our agile development processes allow rapid identification of security issues using automated tests built our deployment pipeline. We utilize container technology so that components deployed in the customer environment can be rapidly upgraded without impact. Speedscale continuously iterates and improves product security utilizing both startup engineering velocity and established company policies.
Personnel
Speedscale Inc. takes the security of its data and that of its clients and customers seriously and ensures that only vetted personnel are given access to their resources.
- All Speedscale Inc. contractors and employees undergo background checks prior to being engaged or employed by us in accordance with local laws and industry best practices.
- Confidentiality or other types of Non-Disclosure Agreements (NDAs) are signed by all employees, contractors, and others who have a need to access sensitive or internal information.
- We embed the culture of security into our business by conducting employee security training & testing using current and emerging techniques and attack vectors.
Testing
Speedscale Inc. deploys third party penetration testing and vulnerability scanning of all production and Internet facing systems on a regular basis.
- All new systems and services are scanned prior to being deployed to production.
- We perform penetration testing both by internal security engineers and external penetration testing companies on new systems and products or major changes to existing systems, services, and products to ensure a comprehensive and real-world view of our products & environment from multiple perspectives.
- We perform static and dynamic software application security testing of all code, including open source libraries, as part of our software development process.