Go-Live Checklist
A step-by-step roadmap for deploying RiskOS™. Follow these milestones to navigate setup, Sandbox certification, and production validation for a stable and successful launch.
Integration checklist
Milestone 1: Setup & Preparation
Review the fundamentals of Socure API requests and responses to ensure proper integration.
Access and manage your credentials (API and SDK Keys) in the RiskOS™ Dashboard.
Follow the Integrating with RiskOS™ guide to send an example request.
Learn how to create and manage users in RiskOS™ as a self-serve process to ensure correct role permissions.
Identify mandatory inputs required for your specific workflow and coordinate with your Socure team to finalize configurations.
Milestone 2: Implementation & Configuration
Workflow integration:
Begin triggering workflows using the RiskOS™ Evaluation API within your application logic.
Implement error handling and retry logic.
Add exponential backoff for temporary errors (429, 500, 502). Review our documentation on best practices for error handling and interpreting API error responses.
Complete PII data mapping: Discuss with Socure the PII inputs you will be sending (for example, SSN, DOB, or IP address).
Webhooks:
Configure webhook endpoints and subscribe to the relevant Event Subscription Types for real-time updates.
Integrate Watchlist Monitoring webhooks (if applicable) to receive alerts for ongoing monitoring events.
SDK integration:
(Applicable if implementing the Digital Intelligence and/or Document Verification SDK.)
Set up the Predictive Document Verification (DocV) SDK in your mobile or web application.
Integrate with the Digital Intelligence SDK to receive device and behavioral signals.
Testing & validation:
Perform integration testing in Sandbox using test data to validate logic before certification.
Product settings:
Confirm Product Settings for KYC, DocV, and Watchlist.
Enable Case Management for manual reviews.
Milestone 3: Certification
SDK certification:
Participate in a live SDK certification demo with a Socure Developer Support Engineer for final sign-off.
Sandbox workflow certification:
Perform Sandbox workflow certification: Send the
eval_ids of at least 3 transactions that match your production formatting.Test webhook connectivity by performing a manual decision in the RiskOS™ Dashboard to confirm the
updated_decisions trigger.TPS rate limit:
Confirm the 10 TPS rate limit is sufficient.
The TPS is set at our default 10 TPS. Should you expect a surge in volumes requiring additional TPS, please inform us at least one week in advance to coordinate scaling. A commercial discussion may be required for rate increases.
Storage requirements:
Ensure the response parameters
eval_id, scores, and reasonCodes are stored locally for all evaluations in which Socure is called.Note that Socure is not a system of record for long-term data retention and stores data only for the period specified in your contract.
Status page and feedback mechanisms:
Subscribe to the Socure status page for real-time monitoring of verifications and API metrics.
Send feedback data for all transactions to improve fraud capture rates via Feedback API, Feedback CSV import, or Manual Feedback.
Release notes:
Review the latest Release Notes to stay informed about product updates and enhancements.
Milestone 4: Production Validation
Once your integration is certified in the Sandbox environment, follow these steps to complete production validation and confirm connectivity with your downstream systems before launch.
Production validation:
Change your API Key and Bearer Token from Sandbox to your Production environment credentials.
Ensure your application is pointing to the Production URLs:
- Production API endpoint:
https://riskos.socure.com/api/evaluation - Production RiskOS™ Dashboard: https://riskos.socure.com
Retrieve your Production API and SDK Keys from the RiskOS™ Dashboard.
Set up all webhooks in the Production environment.
Note: You must configure Watchlist webhooks to successfully activate Watchlist Monitoring.
Review and configure your Production Product Settings to match your specific business requirements.
Configure Production IP Filtering (optional but recommended) for enhanced security.
Establish access to the 24/7 Support Department via [email protected].
Milestone 5: Go Live & Hypercare
Go Live & Hypercare:
Complete final Go Live Activities and request Socure to lift rate limits for Production traffic.
Perform Hypercare Monitoring: Post-Go Live transaction monitoring for 14 days to ensure system stability.
Updated 6 days ago