Skip to main content

ORGANIZATION final as README

  • Risk registry
    • Control assessments
    • Technology assessments
    • Cybersecurity assessments
  • Vulnerability management
    • TAD surfaces
    • Stellar surfaces
    • Deployment vulnerabilities
  • Key management
    • Technical administration, provisioning
    • Physical safeguards
    • Oversight
  • Investor Classification
    • Covered Investor Information
    • Investor notices
    • Mail materials
  • Service provider oversight
    • What's outsourced (info diagrams)
    • Public collaboration platforms
    • Provider secrets access
  • Incident response program
    • Intrusion detection
    • Activity responses
    • Response & recovery
  • Decentralized coordination
    • Thesis ethos (ref values #decentralized {#collective-wisdom})
    • Collaborative friendship ([gov -- Who owns risk, policy, roles, oversight, suppliers, and priorities])
    • Open network ([detection and monitoring of the Registrant's intra environment; ec exec2])
  • Team reports
    • Post security incidents demonstrating Incident Response Program steps were followed
    • System monitoring log
    • Team protective practices (**collection of concepts with sourcing akin to the nondirective bias basis)