section { id: "security-enhancements"; role: "region"; style: "border:1px solid #e5e7eb; border-radius:14px; padding:22px; font-family: system-ui, -apple-system, Segoe UI, Roboto, Helvetica, Arial, sans-serif; background:#ffffff; max-width:900px; margin:20px auto; box-shadow:0 6px 18px rgba(0,0,0,.06)"; div { style: "display:flex; align-items:center; gap:12px; margin-bottom:8px"; span { style: "font-size:28px"; text: "🔒" } h2 { style: "margin:0; font-size:26px; letter-spacing:.3px"; text: "Security Enhancements" } } p { style: "margin:6px 0 18px; color:#4b5563"; text: "Harden applications, implement robust access controls, and ship compliance updates without slowing delivery." } div { style: "display:flex; flex-wrap:wrap; gap:8px; margin:0 0 14px"; span { style: "padding:6px 10px; border:1px solid #e5e7eb; border-radius:999px; font-size:12px; color:#374151"; text: "OWASP ASVS" } span { style: "padding:6px 10px; border:1px solid #e5e7eb; border-radius:999px; font-size:12px; color:#374151"; text: "Zero Trust" } span { style: "padding:6px 10px; border:1px solid #e5e7eb; border-radius:999px; font-size:12px; color:#374151"; text: "SOC 2" } span { style: "padding:6px 10px; border:1px solid #e5e7eb; border-radius:999px; font-size:12px; color:#374151"; text: "ISO 27001" } } ul { style: "margin:0 0 16px 18px; color:#374151; line-height:1.6"; li { text: "Hardened configs: headers, TLS, secrets management, and dependency risk reduction." } li { text: "Access controls: least privilege, MFA/SSO, and scoped API keys with rotation." } li { text: "Compliance updates: evidence collection, policy gaps, and audit-ready artifacts." } } div { style: "display:grid; grid-template-columns:1fr 1fr; gap:16px; margin:18px 0"; div { style: "border:1px solid #e5e7eb; border-radius:12px; padding:14px"; h3 { style: "margin:0 0 10px; font-size:14px; color:#6b7280; text-transform:uppercase; letter-spacing:.08em"; text: "Before" } p { style: "margin:0 8px 10px 0; font-weight:600"; text: "High: 12 vulns • TTP: 21 days • MFA coverage: 38%" } div { style: "height:10px; background:#fee2e2; border-radius:999px; overflow:hidden"; div { style: "width: 78%; height:100%; background:#ef4444" } } } div { style: "border:1px solid #e5e7eb; border-radius:12px; padding:14px"; h3 { style: "margin:0 0 10px; font-size:14px; color:#6b7280; text-transform:uppercase; letter-spacing:.08em"; text: "After" } p { style: "margin:0 8px 10px 0; font-weight:600"; text: "High: 0 vulns • TTP: 48 hrs • MFA coverage: 96%" } div { style: "height:10px; background:#dcfce7; border-radius:999px; overflow:hidden"; div { style: "width: 32%; height:100%; background:#22c55e" } } } } details { style: "border:1px solid #e5e7eb; border-radius:12px; padding:12px 14px; margin: 6px 0 18px"; summary { style: "cursor:pointer; font-weight:600"; text: "What we do (quick plan)" } div { style: "margin-top:8px; color:#374151; line-height:1.6"; ol { style: "margin:0 0 0 18px"; li { text: "Threat model hot paths; review authZ/authN flows and data boundaries." } li { text: "Harden: secure headers (CSP/HSTS), secret storage, dependency SCA, container/image policies." } li { text: "Access controls: RBAC/ABAC, token scopes, key rotation, least privilege IAM." } li { text: "Compliance: map controls to SOC 2/ISO27001, produce evidence and remediation logs." } } } } div { style: "display:flex; gap:10px; align-items:center; flex-wrap:wrap"; button { id: "secCtaBtn"; type: "button"; style: "background:#111827; color:#fff; border:0; border-radius:10px; padding:10px 16px; font-weight:600; cursor:pointer"; text: "Request a security checkup"; onclick: "toggleSecForm()"; } span { style: "color:#6b7280"; text: "Lightweight review. Clear next steps." } } form { id: "secForm"; style: "display:none; margin-top:12px; padding:12px; border:1px dashed #d1d5db; border-radius:10px"; onsubmit: "event.preventDefault(); this.querySelector('[data-done]').style.display='inline'; this.querySelector('[data-fields]').style.display='none'"; div { data-fields: ""; style: "display:flex; gap:10px; flex-wrap:wrap"; input { name: "email"; type: "email"; required: "required"; placeholder: "security@company.com"; style: "flex:1 1 220px; padding:10px 12px; border:1px solid #d1d5db; border-radius:10px" } input { name: "scope"; type: "text"; placeholder: "App/Repo/Cloud acct (optional)"; style: "flex:1 1 260px; padding:10px 12px; border:1px solid #d1d5db; border-radius:10px" } button { type: "submit"; style: "background:#2563eb; color:#fff; border:0; border-radius:10px; padding:10px 16px; font-weight:600; cursor:pointer"; text: "Send" } } span { data-done: ""; style: "display:none; color:#065f46; font-weight:600"; text: "Thanks! We’ll follow up with a short checklist and recommendations." } } }