The Diligence risk category assesses the steps a company has taken to prevent attacks, their best practice implementation, and risk mitigation (e.g., server configurations) to determine if the security practices of an organization are on par with industry-wide best practices.
The Bitsight API is also available.
Details vary depending on the risk vector. See details for:
- SPF Domains
- DKIM Records
- TLS/SSL Certificates
- TLS/SSL Configurations
- Open Ports
- Web Application Headers
- Patching Cadence
- Insecure Systems
- Server Software
- Desktop Software
- Mobile Software
- Mobile Application Security
- Domain Squatting
|The user assigned to remediate the finding.
|The finding grade.
This does not apply to Compromised System and User Behavior risk vectors, which are graded as N/A.
|The refresh status.
|The name of the issue(s) a finding has, details about the issue(s), and remediation instructions information if applicable.
|Your current progress on remediating findings.
|A history of Issue Tracking for Remediation changes for a finding:
This section will not appear if the status has never been updated.
|The date when the “Remediation Status” or “Assigned To” fields were last changed.