Domain.Posture

Vendor security questionnaire

The DNS, email, and TLS questions on every security questionnaire — answered, dated, and kept current.

Pre-fill the answers right here from a live scan of your domain, copy them into your CAIQ, SIG, or custom response, and subscribe to keep them true between deals. Each answer is dated and signed, with the SOC 2 / ISO 27001 control it supports stamped beside it.

Fill answers from a domain scan

Enter your domain. We run the same 15 checks as a Domain Posture Domain Audit Report and pre-fill draft answers for 15 common vendor-questionnaire items. Copy, edit, and paste into your CAIQ / SIG / ISO 27001 response.

What the pack answers

  • Does the domain enforce DMARC with p=reject or p=quarantine?
  • Is SPF configured and within the 10-lookup limit?
  • Are DKIM selectors published with sufficient key strength?
  • Is TLS 1.2+ enforced on all public endpoints?
  • Are HSTS, CSP, and X-Frame-Options correctly set on the home page?
  • Is DNSSEC enabled on the apex?
  • Is MTA-STS published for SMTP-TLS enforcement?
Keep these answers current →Answer one domain nowSee a sample