This section is for engineers building and operating Neuroscale services. It implements the requirements of the Secure Development and Operations Security policies.

Where to start

Secure coding

Secure-by-design and privacy-by-design principles applied to the codebase.

Code review

PR review process, required approvals, and what reviewers look for.

Change management

How changes flow from development through staging into production.

Release checklist

What must be true before code ships.

Configuration & hardening

Baseline configuration standards for cloud, containers, and VMs.

Secrets management

Where secrets live and how they’re rotated.

Logging & monitoring

What we log, where, and how alerting works.

Vulnerability management

Scanning, severity, and remediation SLAs.

On-call

The engineering on-call rotation lives in our Better Stack on-call schedule. The on-call runbook is at the on-call runbook in Notion.

Escalation

For security incidents, use Incident Response. For production issues, page engineering on-call.

Version history

VersionDateDescriptionAuthorApproved by
1.0May 8, 2026Initial versionCameron WolfeIshan Jadhwani