Minimus Trust Center

Security is in Our DNA

We're lifelong security practitioners and company builders. We're dedicated to the highest standards of security and the best possible support we can deliver to our customers.

Learn more

SOC-2 & ISO 27001

Minimus is both SOC-2 and ISO 27001 certified. Reports are available by request.

Industry-Leading SLAs

We patch critical CVEs within 48 hours of upstream availability; high and medium within 14 days.

Global Support

Our global team ensures that we have round-the-clock support, 365 days of the year.

Our blog

The Latest Updates From Minimus

Blog and video updates from the Minimus team on application security, all things cloud native, and more.

View all posts

Opinions

Three Days to Patch: Why CISA's New Directive Is a Wake-Up Call to Stop Playing Whack-a-Mole

CISA BOD 26-04 represents a shift from severity-based patching to risk-based remediation. Organizations should rethink how they manage vulnerability volume.

Ben Bernstein

June 12, 2026

Guides

Understanding CISA BOD 26-04: Prioritizing Security Updates Based on Risk

CISA BOD 26-04 shifts vulnerability management toward risk-based prioritization. Here's what changed and what it means in practice.

Neil Carpenter

June 11, 2026

Guides

Understanding How CIS, NIST, and FedRAMP Fit Together in Containerized Environments

Understand how CIS, NIST, and FedRAMP work together to secure containerized environments, reduce risk, and support compliance requirements.

Gabriele Falchini

June 4, 2026