Introduction of the program
The purpose of this program is to establish collaboration with security researchers in order to perform security tests against TBI Bank Group environment. Its goals are:
- to determine whether and how a malicious user can gain unauthorized access to assets that affect the fundamental security of the system, files, logs and/or sensitive data;
- to confirm that the applicable controls, such as scope, vulnerability management, methodology, and segmentation are in place.
Обхват на програмата
Scope of this policy covers all the assets of: TBI Bank EAD, TBI Bank EAD Sofia – Branch Bucharest, TBI Credit IFN S.A. (Romania), TBI Leasing IFN S.A. (Romania). This Program covers mixed environment including all systems, applications, webservices, APIs, mobile and all targets part of the infrastructure of the bank.