The Aqua Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.
AlertOps’ alert management system can be integrated with Aquasec to receive and respond to critical (predefined status mappings) alarms/alerts through email, SMS, push notification or phone alerts. AlertOps would ensure that the alert would reach the appropriate team by using proper workflows, escalation policies and schedules. Based on your ruleset, incidents can be automatically opened and closed, depending on whether Aquasec reports a problem or a recovery.
The above scenario and scope for integration is due to the fact that AlertOps has a very flexible and simple API/Webhook configuration feature that can be leveraged with Aquasec’s cloud monitoring and alerting capabilities.
(In this guide, we will see how to integrate AlertOps with Aqua through an Amazon SNS topic integration – therefore a prerequisite is to have an AWS environment with SNS service)
You can send alerts from Aqua to AlertOps.
- AlertOps will automatically create an incident when a new alert is received from AquaSec when the Message status field contains “FAIL”.
- If an alert with status “FAIL” matches an existing Open Alert, AlertOps will recognize the new alert as a duplicate and ignore the alert.
- The alert will be recorded in the Inbound Messages table as “Mapped Appended.”
- AlertOps will automatically close the same incident when an alert with a Message status does not contain “FAIL” (or contains “PASS” alternatively).
These are examples of just some of the things you can do with Aqua and AlertOps.