What is the security rating for pagerduty.com?

pagerduty.com has a security posture score of 78/100 (Conditional) based on 8 passive checks covering TLS, DMARC, headers, breaches, CVEs, DNS, and certificates. Scanned February 15, 2026.

Is pagerduty.com secure?

pagerduty.com partially meets LynxRadar's threshold with 78/100. 5 passed, 3 warnings, 0 failures.

Conditional

pagerduty.com

Item: pagerduty.com
Rating: 78
Author: LynxRadar

Security posture assessment · Scanned February 15, 2026

Findings

5 · 3 · 0

Checks

8 passive

Executive Summary AI-GENERATED

pagerduty.com scored 78/100, meeting baseline requirements but with 3 findings that require attention. The vendor can proceed with a remediation timeline agreement.

Positive signals: Known Breaches, DNS Configuration, HSTS Header all passed.

3 action items identified, including 0 critical. The issues are configuration gaps, not architectural problems. A focused remediation effort of 2–5 days could address all findings.

Action Items

Ordered by priority · 3 items

Strengthen email authentication configuration

Effort: 2–4 hours Owner: IT / DNS administrator

high

Email authentication is partially configured for pagerduty.com but has gaps. Actions needed: add SPF record. Until DMARC enforcement is active, spoofed emails may still reach recipients.

Compliance Impact

NIST CSFPR.AC-7

Email authentication is a required access control

Remediation Steps

Add SPF record if missing: v=spf1 include:_spf.google.com -all

Verify with: nslookup -type=txt _dmarc.pagerduty.com

🔒

Unlock the full remediation plan

Get detailed steps, compliance mapping, and ownership for all 3 action items. Free — just enter your work email.

No spam. We'll only contact you about this report.

✓ Report unlocked. Scroll down for full details.

Upgrade to TLS 1.3

Effort: < 1 hour Owner: Web server administrator

low

pagerduty.com negotiated TLSv1.2. TLS 1.2 is still compliant under all major security frameworks and is not a vulnerability. TLS 1.3 offers faster handshakes and removes legacy cipher negotiation. This is a best-practice improvement, not a compliance gap.

Remediation Steps

Update web server config to prefer TLS 1.3 (nginx: ssl_protocols TLSv1.2 TLSv1.3)

Verify: openssl s_client -connect pagerduty.com:443 -tls1_3

Review certificate configuration

Effort: 1–2 hours Owner: Infrastructure / DevOps

low

Certificate issues found for pagerduty.com: wildcard certificate in use. Wildcard certificates have a broader blast radius if compromised. Ensure auto-renewal is configured to prevent expiry. These are operational hygiene items, not immediate security risks.

Remediation Steps

Verify auto-renewal is configured (Let's Encrypt: certbot renew --dry-run)

Consider replacing wildcard cert with individual certs for critical subdomains

Consolidate certificate issuance to 1–2 trusted CAs

Scan Findings

DMARC / Email Security

Warning

TLS Configuration

Warning

Certificate Hygiene

Warning

Known Breaches

Healthy

DNS Configuration

Healthy

HSTS Header

Healthy

Security Headers

Healthy

CVE Exposure

Healthy