10: Threat and Vulnerability Management

Control objective 10.2

Vulnerabilities in the software and third-party components are tested for and fixed prior to release.

A collection of automated tests verifies that there are no known vulnerabilities in the new IBM® Safer Payments release. Those tests are run before a release is delivered to customers and are documented within the factory staging.