In this tutorial, we are going to learn about Continuous Monitoring in Microservices.

Continuous Monitoring

• Continuous monitoring or CM, also known as continuous control monitoring, i.e., CCM.
• CM is an automated process that allows engineers to detect compliance and security threats in their software development lifecycle and infrastructure.
• Unlike traditional manual & periodical checks, CM helps to identify and track key risks in real time because it uses automation.

So in a nutshell, continuous monitoring is an automated process that allows engineers to detect compliance and security threats in their software development lifecycle and infrastructure.

• Basically, what it says is that you have to implement some automated processes. For example, automated shell scripts, automated PowerShell scripts or anything like that continuously checks the system for 20 times a day for security threats and also for compliance requirements.
• So if your microservices run in a large company and normally companies that make above a certain amount of revenue or they have like more than a certain number of employees, they are obliged to comply into with some security standards.
• And in order to make sure you always comply with those standards and always cover the security requirements, you should implement some automated processes and those processes check for those security requirements and threats, which is called continuous monitoring.
• Unlike the traditional, manual and periodical checks, continuous monitoring helps to identify and track key risks in real time because it is automated.
• So before automation you should have to fix a day in a week to go through some checklist and make some checks, and that would then be very efficient.
• So if you want to see it in a picture, you define your security requirements, you establish a baseline, and then you implement the security checks and generate reports, you analyze them to make some changes so that you can try to mitigate the risks to make sure that it won’t happen again, and then this cycle keeps going, that is why it’s called as continuous monitoring.