11.4.1
Controls detail rendered from /controls/ctrl_6b96c65286e59c4f.
Overview
| ID | ctrl_6b96c65286e59c4f |
| Collection | Controls |
| Provider | Vanta Trust Center |
| Company | Xactus |
| URL | - |
| Counts | - |
| Updated | - |
Raw record
| Field | Value |
|---|---|
| id | ctrl_6b96c65286e59c4f |
| providerId | vanta |
| organizationId | org_3a3e066a26c285b0 |
| trustCenterId | tc_29ce8358998021bd |
| name | 11.4.1 |
| groupName | Infrastructure security |
| status | documented |
| maturity | - |
| description | A penetration testing methodology is defined, documented, and implemented by the entity and includes: - Industry-accepted penetration testing approaches. - Coverage for the entire CDE perimeter and critical systems. - Testing from both inside and outside the network. - Testing to validate any segmentation and scope-reduction controls. - Application-layer penetration testing to identify, at a minimum, the vulnerabilities listed in Requirement 6.2.4. - Network-layer penetration tests that encompass all components that support network functions as well as operating systems. - Review and consideration of threats and vulnerabilities experienced in the last 12 months. - Documented approach to assessing and addressing the risk posed by exploitable vulnerabilities and security weaknesses found during penetration testing. - Retention of penetration testing results and remediation activities results for at least 12 months. |
| source | {
"field": "graphql.fetchCustomizableControlsDataForExternalTrustCenter"
} |
| company | {
"id": "org_3a3e066a26c285b0",
"name": "Xactus",
"domains": [
"trust.xactus.com",
"xactus.com",
"www.xactus.com"
]
} |
| trust_center | {
"id": "tc_29ce8358998021bd",
"name": "Xactus",
"url": "https://trust.xactus.com",
"host": "trust.xactus.com"
} |
| provider | {
"id": "vanta",
"name": "Vanta Trust Center"
} |
| links | {
"self": "/v1/controls/ctrl_6b96c65286e59c4f",
"company": "/v1/companies/org_3a3e066a26c285b0",
"trust_center": "/v1/trust-centers/tc_29ce8358998021bd",
"provider": "/v1/providers/vanta"
} |
Get this page with API
Rendered from the bluedoor Trust Centers API. Reproduce it:
GET https://api.bluedoor.sh/trust-centers/v1/controls/ctrl_6b96c65286e59c4fJSON