...
Control Levels
Alpha Serve uses Sentry for application monitoring and error tracking. This tool allows you to analyze application logs, capture any unhandled exceptions, see the impact of each problem, and generate useful reports.
The QA team performs on-going automated vulnerability scans using a vulnerability scanner Burp Suite. Also, our cloud applications participate in the Bug Bounty Program by Atlassian, which ensures that our systems are constantly tested.
The users and the wider community are encouraged to report suspected security incidents through Alpha Serve Support or Service Desk.
Info |
---|
In the nearest future, Alpha Serve has intentions to implement implemented a SIEM platform to collect logs from various sources in the hosting infrastructure and track and flag any suspicious activity. Our employees study the advantages and disadvantages of SIEM vendors on the market to choose the most suitable oneThis is applicable for some of our applications, but will be implemented for all of them. |
Vulnerabilities Check
Alpha Serve approaches seriously to vulnerability management for all applications. This approach consists of internal and external security testing with the Bug Bounty.
An always-testing model using a crowd-sourced bug bounty is applied. Alpha Serve participates in the Bug Bounty Program from Atlassian Markeplace. Currently, a private bug bounty program for our applications is hosted by Bugcrowd. The goal of this program is to ensure that our applications are being constantly tested for security vulnerabilities.
...
When a vulnerability is identified by one of our employees or external testers, the actions defined by this Application Security Policy are executed. We try to fix security bugs as soon as possible in accordance with our SLA.