Minimus Trust Center

Security is in Our DNA

We're lifelong security practitioners and company builders. We're dedicated to the highest standards of security and the best possible support we can deliver to our customers.

Learn more

SOC-2 & ISO 27001

Minimus is both SOC-2 and ISO 27001 certified. Reports are available by request.

Industry-Leading SLAs

We patch critical CVEs within 48 hours of upstream availability; high and medium within 14 days.

Global Support

Our global team ensures that we have round-the-clock support, 365 days of the year.

Our blog

The Latest Updates From Minimus

Blog and video updates from the Minimus team on application security, all things cloud native, and more.

View all posts

Guides

What NIST's NVD Changes Mean for Vulnerability Management

NIST is enriching fewer CVEs. Learn what that means for vulnerability scanners, CVE prioritization, and vulnerability management.

Neil Carpenter

June 18, 2026

Opinions

Three Days to Patch: Why CISA's New Directive Is a Wake-Up Call to Stop Playing Whack-a-Mole

CISA BOD 26-04 represents a shift from severity-based patching to risk-based remediation. Organizations should rethink how they manage vulnerability volume.

Ben Bernstein

June 17, 2026

Guides

Understanding CISA BOD 26-04: Prioritizing Security Updates Based on Risk

CISA BOD 26-04 shifts vulnerability management toward risk-based prioritization. Here's what changed and what it means in practice.

Neil Carpenter

June 17, 2026