Resources in Scope

Aptible takes into account any containerized Apps and Databases, as well as the associated Endpoints exposing them, across different Aptible environments hosted on your Shared and Dedicated Stacks, as well as users who have access to these workloads. Each resource is then tested for various security controls Aptible has identified as per our division of responsibilities.

These security controls are split across different categories that pertain to various pieces of an organization’s overall security posture. These categories include:

  • Access Management
  • Auditing
  • Business Continuity
  • Encryption
  • Network Protection
  • Platform Security
  • Vulnerability Management

Every control tests for security safeguard implementation for specific resources in scope. For example, the Mulli-factor Authentication control tests for the activation and enforcement of MFA/2FA on the account level, whereas a control like Cross-region backups is applied on the Database level, testing whether or not you’ve enabled the auto-creation of geographically redundant copy of each Database backup for disaster recovery purposes.

You can see resources in scope by clicking into a control of interest.