During the product planning and design phase, Alpha Serve uses threat modelling to understand the specific security risks associated with an application or its feature. Also, all of the new features go through a code-review process which among other things includes checking the security level.
Alpha Serve uses Sentry for application monitoring and error tracking. This tool allows you to analyze application logs, capture any unhandled exceptions, see the impact of each problem, and generate useful reports.
The QA team performs on-going automated vulnerability scans using a vulnerability scanner Burp Suite. Also, our cloud applications participate in the Bug Bounty Program by Atlassian, which ensures that our systems are constantly tested.
The users and the wider community are encouraged to report suspected security incidents through Alpha Serve Support or Service Desk.
In the nearest future, Alpha Serve has intentions to implement a SIEM platform to collect logs from various sources in the hosting infrastructure and track and flag any suspicious activity. Our employees study the advantages and disadvantages of SIEM vendors on the market to choose the most suitable one.