Audit dátuma: 2024.02.20.
| Category | Activity | Scope | Status of the internal audit |
|---|
| Product Development Environment | Product Team Workstations | - Updated Virus Protection
- Full Disk Encrytion
- No unauthorized access
| Product Team WorkstationsWe have validated the notebooks of all of our 31 product team members. |
| Source Code Management System | - Login access is restricted only to authorized persons
- Only minimal permissions are granted
- No unauthorized access
| Bitbucket Cloud - META-INFSource code management and Build system to store and build the code of our applications. Permissions - Admin : Can create, delete repositories and modify repository settings.
- Write : Can push and merge source code modifications and trigger manual build pipelines.
- Read : Can pull source code, read build logs and pull requests.
Repository1 - Admin
1 DevOps Engineer 1 Software Developer 2 Product Owner 1 Technical Account - Write
10 Software Developer 2 Support Agent 1 CEO
Repository2 - Admin
1 DevOps Engineer 1 Software Developer 2 Product Owner 1 Technical Account - Write
10 Software Developer 2 Support Agent 1 CEO
Repository3 - Admin
1 DevOps Engineer 1 Software Developer 2 Product Owner 1 Technical Account - Write
10 Software Developer 2 Support Agent 1 CEO
Repository4 - Admin
1 DevOps Engineer 1 Software Developer 2 Product Owner 1 Technical Account - Write
10 Software Developer 2 Support Agent 1 CEO
Repository5 - Admin
1 DevOps Engineer 1 Software Developer 2 Product Owner 1 Technical Account - Write
10 Software Developer 2 Support Agent 1 Technical Account 1 CEO - Read
3 Test Engineer
Repository6 - Admin
1 DevOps Engineer 3 Software Developer 2 Product Owner 1 Technical Account - Write
8 Software Developer 3 Test Engineer 2 Support Agent 1 CEO
Repository7 - Admin
1 DevOps Engineer 1 Software Developer 2 Product Owner 1 Technical Account - Write
10 Software Developer 2 Support Agent 1 CEO
Repository8 - Admin
1 DevOps Engineer 1 Software Developer 2 Product Owner 1 Technical Account - Write
13 Software Developer( 3 Contractor ) 3 Test Engineer 2 Support Agent 1 Technical Account 1 CEO - Read
1 Software Developer( 1 Contractor ) 1 Support Agent
Repository9 - Admin
1 DevOps Engineer 1 Software Developer 2 Product Owner 1 Technical Account - Write
13 Software Developer( 3 Contractor ) 3 Test Engineer 2 Support Agent 1 Technical Account 1 CEO
Repository10 - Admin
1 DevOps Engineer 1 Software Developer 2 Product Owner 1 Technical Account - Write
10 Software Developer 3 Test Engineer 2 Support Agent 1 Technical Account 1 CEO
Repository11 - Admin
1 DevOps Engineer 1 Software Developer 2 Product Owner 1 Technical Account - Write
10 Software Developer 3 Test Engineer 2 Support Agent 1 Technical Account 1 CEO
Repository12 - Admin
1 DevOps Engineer 1 Software Developer 2 Product Owner 1 Technical Account - Write
10 Software Developer 3 Test Engineer 2 Support Agent 1 Technical Account 1 CEO
Repository13 - Admin
1 DevOps Engineer 1 Software Developer 2 Product Owner 1 Technical Account - Write
10 Software Developer 3 Test Engineer 2 Support Agent 1 Technical Account 1 CEO
Repository14 - Admin
1 DevOps Engineer 3 Software Developer 2 Product Owner 1 Technical Account - Write
8 Software Developer 3 Test Engineer 2 Support Agent 1 CEO
|
| Artifact Management System | - Login access is restricted only to authorized persons
- Only minimal permissions are granted
- No unauthorized access
| Jfrog ArtifactoryArtifact management system to store the build logs and artifacts of your application. Permissions - Admin : Can create, delete repositories and modify repository settings.
- Write : Can upload, delete, overwrite (in snapshot repositories) artifacts.
- Read : Can list, download artifacts.
Repository1 - Admin
1 DevOps Engineer - Write
1 Technical Account - Read
11 Software Developer 3 Test Engineer 1 Product Owner
Repository2 - Admin
1 DevOps Engineer - Write
1 Technical Account - Read
11 Software Developer 3 Test Engineer 1 Product Owner
|