Tech @ GoCardless
Published in

Tech @ GoCardless

Using CIS benchmarks to set expectations in a DevOps environment

Credit: Pixabay

Why did we adopt CIS benchmarks? 📚

How do they fit into the wider context for DevSecOps? 🤝

How are they helping us? 🙌

  • ISO27001 — Security compliance
  • FCA and other financial regulators around the globe
  • SOC II — Security compliance as we implement it
  • Our enterprise risk management

Impact and what next ✈️

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Greg

Greg

Security addict, 17+ years in industry making systems more secure and finding those that aren’t