0
6.1.2
Yokohama, Xanadu, Washington DC, Vancouver
Import security data from service graph connectors so that you can audit your enterprise assets based on policies for security gaps. IT and security teams can view imported data on dashboards in the Security Posture Control Workspace and perform the following tasks:
- Automatically prioritize and assign the security gaps you discover to IT and security teams for remediation with the workflow in the Configuration Compliance application.
- Create and define asset profiles to monitor different categories of devices with your SPC policies.
- Search for assets that match conditions you set with the asset search feature.
- Build policies that suit your requirements using a policy builder that supports filters for asset types, connections, and properties.
- View data and configure security findings in the Security Posture Control workspace.
- Build on an existing policy as a base so you automatically inherit its conditions in your new policy.
- Ignore the results of certain policy conditions with the policy exclusion feature if you're using more than one policy for queries.
- Activate use cases and policies included with the application to get you started quickly.
- Build your own custom insights based on policies.
New:
- Asset profiles
- Create and define asset profiles to monitor different categories of devices with your SPC policies.
- Asset profiles support three Connection types:
- With CMDB metadata - Collection of CMDB CI properties such as Host name, OS, OS version, First and Last seen, for example, or connections that have network adaptors or installed software.
- With aggregated data - Collection of properties with aggregated values as reported by different sources for a given asset.
- From CI class - Collection of CI classes that includes Computer, Server, Virtual Machine Instance, and other classes. You can use this condition and connection type to define asset profiles that are based on specific CMDB property values.
- Incorporate your asset profiles into your policies so you can run policies for specific types of assets.
- Filter insights in the Configured Insights dashboard so they are based on your asset profiles.
- Added support for AWS WAF in the SPC Policies.
Fixed:
- Added support for the new service graph connector released by Tenable.
Changed:
- Custom insights are renamed to configurable insights.
- Dependencies
- Configuration Compliance