OpsCompass monitors cloud infrastructure for changes, to help avoid costly and dangerous misconfiguration of cloud resources. Change, or drift, of resources is evaluated to determine if the configuration adheres to organizational and compliance requirements. When there are noncompliant resources identified, OpsCompass specifies what actions need to be taken to fix the issue and recommends a remediation priority.Users are able to configure, via Drift Concerns, what changes result in a notification and who should receive it. OpsCompass uses Slack to notify users that resources have changes that may require remediation to return them to a compliant state. Each Drift Concern can be directed to a different audience by using separate Slack channels.Whether you need help with understanding your cloud’s security posture, evidence for third-party or internal audits, or remediation plans to aid DevOps, OpsCompass will help you navigate the seas of change.
OpsCompass will be able to do:
Review the details to better understand this app’s security practices. To learn more about assessing apps for your workspace visit our Help Center.
All customer data is treated as sensitive since it is configuration details of customer cloud environments. OpsCompass uses encryption for data at rest. Customer data retention period is based upon the customer's payment tier. Customer requests are supported by automated processes that discover and delete the applicable data. These same processes are used to enforce customer retention periods.
Data archiving and removal policy
OpsCompass does not currently archive data. Data retention periods are based upon the customer's payment tier.
Data storage policy
Customer data is categorized as sensitive and stored using encryption to protect data at rest.
App/service has sub-processors
Certifications & compliance
Data deletion request procedure
When someone requests that OpsCompass delete their company data, we give them 2 weeks to change their mind, then delete their data from our various databases and our identity provider.
While this app may offer HIPAA compliance, Slack does not have a business associate agreement with any third-party application providers, including those in the Slack App Directory, so you are responsible for validating the provider's compliance and executing an appropriate agreement before enabling.
Supports Security Assertion Markup Language (SAML)