search

ministryofjustice / modernisation-platform

A place for the core work of the Modernisation Platform • This repository is defined and managed in Terraform
https://user-guide.modernisation-platform.service.justice.gov.uk
MIT License
679 stars 290 forks source link

SPIKE: How to become aware of security incidents on the platform #1776

Open davidkelliott opened 2 years ago

davidkelliott commented 2 years ago

User Story

As a Modernisation Platform Engineer I want to be alerted of security incidents reported by AWS tools So that I can respond to them in a timely fashion

User Type(s)

Value

How do we make sure that we are aware of any security incidents that happen on the platform? Can we leverage existing tools such as security hub?

We need to be alerted to critical/high security warnings from AWS security hub, whilst also being able to filter out the criticals which we have dismissed.

Questions / Assumptions / Hypothesis

Definition of done

Reference

How to write good user stories

github-actions[bot] commented 5 months ago

This issue is stale because it has been open 90 days with no activity.