-
Notifications
You must be signed in to change notification settings - Fork 290
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Clean up security hub / config alerts #1535
Comments
This issue is stale because it has been open 90 days with no activity. |
found two alarms that are going off the first one is |
PR merged and new release created will monitor alerts |
#7376 |
created an issue for an error that has been found |
New Release created with new base count of 10 instances |
New Cloud watch alarms |
User Story
We currently have security hub alerts which go off on pager duty. We need to look at these alerts and either resolve the underlying issue, or silence them and add a more reasonable alert.
For example security hub requires any failed login attempts to raise an alert. This happens occasionally and we don't need to know about this. We have to keep the original alert for security hub compliance, but we could mute that alert on pager duty and create a more useful one, such as 5 failed login attempts in a 1min period.
Value
Have alerts that when they go off we know we need to do something.
Questions / Assumptions
Definition of done
Reference
How to write good user stories
The text was updated successfully, but these errors were encountered: