We need to add those connections to our content security policy configuration. However, our security team would require us to ensure secure connections(Https instead of Http).
How could we ensure we make secure connections? Sorry if this has been discussed else where.
Since you appear to be using the default third-party tracking server for your Analytics call (sc.omtrdc.net), the Analytics call should automatically switch to HTTPS when on a HTTPS portion of your site. This is also true with the demdex call.
Hopefully this helps.