top of page

Tromba Technologies Teams with Vanta to provide Security and Privacy

Effective Date: 04/04/2023 

Foundational Principles of Our Security Policy

1.

Access should be limited to only those with a legitimate business need and granted based on the principle of least privilege.

3.

Security controls should be applied consistently across all areas of the enterprise.

2.

Security controls should be implemented and layered according to the principle of defense-in-depth.

4.

The implementation of controls should be iterative, continuously maturing across the dimensions of improved effectiveness, increased auditability, and decreased friction.

Data Protection

Product Security

Vanta engages with one of the best penetration testing consulting firms in the industry at least annually. Our current preferred penetration testing partner is Doyensec, one of the leading experts in GraphQL security.  

All areas of the Vanta product and cloud infrastructure are in-scope for these assessments, and source code is fully available to the testers in order to maximize the effectiveness and coverage.

Enterprise Security

Data Privacy

Looking to Report a Security Concern?

If you have questions, concerns, complaints, or would like to exercise your rights, please contact us at: compliance@trombatech.com 

bottom of page