Monitoring & Incident Response
Aurelis Technology implements comprehensive monitoring, logging, and threat detection across all infrastructure and application layers.
Metrics & Alerting — AWS CloudWatch
- Real-time infrastructure and application metrics collection
- Custom dashboards for service health and performance monitoring
- Automated alerting with configurable thresholds
- Alarm escalation to on-call engineering team
Audit Logging — AWS CloudTrail
- Complete API audit trail for all AWS account activity
- Management and data event logging enabled
- Logs stored in encrypted S3 buckets with integrity validation
- Log retention in compliance with security policy requirements
Threat Detection — AWS GuardDuty
- Continuous threat detection using machine learning and threat intelligence
- Monitors for unauthorized access, compromised instances, and malicious activity
- Automated findings published to security team for review and action
- Integration with incident response workflows
Centralized Logging
- Application and infrastructure logs aggregated centrally
- Structured logging format for efficient search and analysis
- Log-based alerting for security-relevant events
- Retention policies aligned with compliance requirements
Incident Response Process
- 24/7 monitoring with automated alerting for critical issues
- Defined incident severity classification (P1–P4)
- Escalation procedures with clear ownership at each level
- Client communication protocols for incidents affecting their environment
- Post-incident reports with root cause analysis and remediation steps
Incident Response SLAs
- P1 (Critical) — initial response within 1 hour, client notification within 4 hours
- P2 (High) — initial response within 4 hours, client notification within 24 hours
- P3 (Medium) — initial response within 1 business day, client notification within 3 business days
- P4 (Low) — initial response within 2 business days, addressed during normal operations
- Affected clients notified without undue delay following confirmation of a breach impacting their data
Log Retention
- AWS CloudTrail audit logs retained for 12 months
- Application logs retained for 90 days
- Security event logs (GuardDuty findings, WAF logs) retained for 12 months
- Access logs (ALB, CloudFront) retained for 90 days
- All logs stored in encrypted S3 buckets with integrity validation
Security Contact
To report a security concern or vulnerability, please contact our security team at support@aurelistechnology.com or use the documentation request form.