Security Portal

Get full access to this Security Portal
  • Review all security details
  • Unlock documents
  • Reclaim access anytime
Had access before? Reclaim access

Overview

At Stoplight, we are steadfast in following a design-first approach in all that we do, and we recognize that proper security is a critical component of getting that design right for our customers the first time. Security and compliance are fundamental to your experience with the product, and Stoplight is committed to securing your data, eliminating vulnerabilities, and ensuring continuity of access.

Stoplight uses various industry-standard technologies and services to secure your data from unauthorized access, disclosure, use, and loss. In addition, all Stoplight employees undergo background checks before employment and are trained on security practices during company onboarding and annually throughout the year.

Stoplight uses the CIS controls framework to assess and evolve its security posture.

Our current CIS assessment score is: 86

Risk Profile

Data Access LevelInternal
Impact LevelModerate
Recovery Time Objective< 12 Hours
See more
Get full access to this Security Portal
  • Review all security details
  • Unlock documents
  • Reclaim access anytime
Had access before? Reclaim access

Documents

14 Documents
Information Security Policy
General Incident Response Policy
Business Continuity Policy
Other Reports
Pentest Report
Vulnerability Assessment Report
Acceptable Use Policy
Access Control Policy
Backup Policy
Data Classification Policy
Data Security Policy
Encryption Policy
Penetration Testing

Product Security

Role-Based Access Control
Audit Logging
Data Security
See more

Reports

Other Reports
Pentest Report
Vulnerability Assessment Report

Data Security

Backups Enabled
Data Erasure
Encryption-at-rest
See more

App Security

Code Analysis
Software Development Lifecycle
Credential Management
See more

Legal

Cyber Insurance
Privacy Policy
Service-Level Agreement
See more

Access Control

Data Access
Logging
Password Security

Infrastructure

Anti-DDoS
Google Cloud Platform
Infrastructure Security
See more

Endpoint Security

Disk Encryption
Endpoint Detection & Response
Mobile Device Management
See more

Network Security

Firewall

Corporate Security

Email Protection
Employee Training
HR Security
See more

Policies

Acceptable Use Policy
Access Control Policy
Backup Policy
See more

Security Grades

Qualys SSL Labs
Web Platform
A+