Our Security Documentation

We use Mycroft.io to centralize our security and compliance documentation and to continuously monitor our platforms, controls, and policies. The Mycroft platform helps us keep documentation accurate, discover gaps, and maintain alignment between our documented controls and operational reality. Key benefits include:

• Centralized access: All security policies, control descriptions, evidence artifacts, and compliance mappings are stored in one place for consistent, auditable access.

• Continuous scanning: Mycroft continuously scans our environments to detect drift, missing controls, configuration issues, and other risks so we can remediate quickly.

• Documentation monitoring: The platform monitors our documentation for completeness and currency, flagging outdated or inconsistent entries and prompting updates.

• Evidence collection: Automated collection and organization of evidence makes audits faster and reduces manual work while preserving traceability.

• Alerts and reporting: We receive timely alerts for findings and regular reports that summarize our posture and trends over time.

• Access controls: Access to documentation and findings is managed through role-based permissions to ensure that only authorized users can view or request sensitive materials.

Requesting access You can request access to our security documentation by visiting: https://app.mycroft.io/trust/zofiq

If you need assistance with access requests or have questions about the data available, please contact our security team at security@zofiq.ai.