DataDome’s Commitment to the CISA Secure by Design Pledge

DataDome, a security vendor specializing in protecting web, mobile, and API traffic from fraud and bot attacks, has aligned with the Cybersecurity and Infrastructure Security Agency's (CISA) Secure by Design Pledge to enhance security standards across the industry. The pledge focuses on seven key commitments, including authentication, secure configurations, vulnerability disclosure, logging, supply chain integrity, and public accountability. DataDome already incorporates these principles in its operations, offering strong authentication practices such as Single Sign-On (SSO) and two-factor authentication, secure-by-default configurations, and continuous security improvements through automated scanning and secure coding practices. The company maintains transparency through a public vulnerability disclosure process, a bug bounty program, and a Trust Center for communicating security assessments and updates. By embedding supply chain security into development processes and providing enriched traffic logs for monitoring, DataDome aims to minimize risks and enhance accountability. The pledge aligns with DataDome's philosophy of integrating security from the start, and the company is committed to further advancements in authentication, visibility, access controls, and transparency to uphold and raise security standards.