GWAC NorthStar is developed and maintained with industry best practices for secure supply chain, secure software development, and securing controlled unclassified information, as well as applicable security controls from NIST Secure Software Development Framework (SSDF, SP 800- 218r1.1) and NIST Protecting Controlled Unclassified Information (PCUI, SP 800-171r2).
We use Microsoft Azure DevOps and Azure Cloud for development and adhere to the Cloud Native Security Controls Catalog and other applicable industry standards.
Security policies apply to IT, production, and supply chain environments and are reviewed periodically for ongoing improvement.
