Dog-fooding! build.security offers fine grained Role Based Access Control to its service. You choose who has the ability to author policies, who can review them and when they can be deployed in production.
We’re also actively working on allowing Single-Sign-On with all popular identity providers.
While build.security lets you author policies according to data attributes sourced from your environment, neither our managed service, nor our personnel ever have access to the data itself.
Our PDPs also leverage cloud native assumed roles and service accounts to allow passwordless connectivity.
build.security’s PDPs log and index all incoming and outgoing traffic unless explicitly masked.
The platform also audits all changes made to the control plane for tracking purposes.