Detective controls

Neptune DXP supports your observability requirements and incident management processes by monitoring its operations as the environment changes in real-time. This fortifies your ability to detect, investigate and recover when security incidents occur.

Neptune DXP achieves this by recording:

  • System Processes tracing events relating to system resource changes e.g. database or system configuration changes

  • System Logs monitoring all logs generated by the system and from scripts.

  • System Reports tracking black box metrics on memory, CPU and execution of various executables such as jobs, scripts, workflows, internal processes; whilst these metrics are not directly tied to security concerns they become relevant in the case of coping with a denial of service attacks or abnormal execution patterns.

  • User Sessions tracking active users accessing a Neptune DXP runtime or a microservice

  • User Processes tracking access to the platform by DevOps resources

  • Deployment Logs providing an audit trail of all changes incurred by external systems enabling the tracing of any unwanted or malicious artefacts

  • https://docs.neptune-software.com/neptune-dxp-open-edition/latest/cockpit-overview/workflow-overview.html tracking the execution status of all workflows serviced by a Neptune DXP application server or microservice

  • Job Log recording the execution of completed background jobs

  • Job Monitor tracking the execution status of live jobs