Monitoring & Incident Response

Aurelis Technology implements comprehensive monitoring, logging, and threat detection across all infrastructure and application layers.

Metrics & Alerting — AWS CloudWatch

  • Real-time infrastructure and application metrics collection
  • Custom dashboards for service health and performance monitoring
  • Automated alerting with configurable thresholds
  • Alarm escalation to on-call engineering team

Audit Logging — AWS CloudTrail

  • Complete API audit trail for all AWS account activity
  • Management and data event logging enabled
  • Logs stored in encrypted S3 buckets with integrity validation
  • Log retention in compliance with security policy requirements

Threat Detection — AWS GuardDuty

  • Continuous threat detection using machine learning and threat intelligence
  • Monitors for unauthorized access, compromised instances, and malicious activity
  • Automated findings published to security team for review and action
  • Integration with incident response workflows

Centralized Logging

  • Application and infrastructure logs aggregated centrally
  • Structured logging format for efficient search and analysis
  • Log-based alerting for security-relevant events
  • Retention policies aligned with compliance requirements

Incident Response Process

  • 24/7 monitoring with automated alerting for critical issues
  • Defined incident severity classification (P1–P4)
  • Escalation procedures with clear ownership at each level
  • Client communication protocols for incidents affecting their environment
  • Post-incident reports with root cause analysis and remediation steps

Incident Response SLAs

  • P1 (Critical) — initial response within 1 hour, client notification within 4 hours
  • P2 (High) — initial response within 4 hours, client notification within 24 hours
  • P3 (Medium) — initial response within 1 business day, client notification within 3 business days
  • P4 (Low) — initial response within 2 business days, addressed during normal operations
  • Affected clients notified without undue delay following confirmation of a breach impacting their data

Log Retention

  • AWS CloudTrail audit logs retained for 12 months
  • Application logs retained for 90 days
  • Security event logs (GuardDuty findings, WAF logs) retained for 12 months
  • Access logs (ALB, CloudFront) retained for 90 days
  • All logs stored in encrypted S3 buckets with integrity validation

Security Contact

To report a security concern or vulnerability, please contact our security team at support@aurelistechnology.com or use the documentation request form.