Policy & Procedure
Infrastructure & Architecture
Develop, Test, Release
Applications, especially in the era of CICD, are not static entities. The longer code exists, the more vulnerable it becomes as new weaknesses are discovered, old platforms aren’t patched, and attackers update their methodologies.
Continuous Application Monitoring
Saltworks Security’s continuous application monitoring provides an expert option on what solutions you need as well as the experience staffed to execute it. Testing includes continuous application monitoring with real time alerts for when vulnerabilities are discovered, testing for changes in operational conditions, and code change detection.
SIEM Log Integration
Most security events still occur at the application layer, so proper application security logging with SIEM integration is inherently important yet often overlooked. Saltworks Security ensures that your application event logging and SIEM integration are optimized by ensuring:
- Activities, errors and successes are logged but sensitive data is masked or excluded while alternative information is provided that can be used to investigate events
- Proper protection and access controls over the log files exist
- Data retention rules for logs, archiving and destruction are met
- Log review access and alerts expire in pre-determined timeframes (periodicity)