Security & Compliance
3 `Security and Compliance at a Glance` provides visibility into the 5 most important dimensions of your multi-cloud’s security and compliance posture.
4 The dot selector allows you to swipe between:
Card |
Descriptions |
Screenshot |
---|---|---|
Cloud Compliance |
Compliance Insights for AWS, Azure, or Google Cloud [link to Compliance Insights section] |
|
Security |
Multi-cloud’s data security posture (powered by Trend Micro) [link to Malware Reporting section] |
|
AWS Security Advisory |
Customers with AWS business level support can take AWS Security Advisories [link to AWS Security Advisory section] |
|
Azure Security Advisory |
Azure Security Advisory are provided for all Azure cloud support types [link to AWS Security Advisory section] |
Compliance Insights
“ More than 77% of IT leaders don’t think their company would pass all of its cloud compliance audits if they happened today.” Lacking insight in compliance standards and how those apply to their multi-cloud can be a large hurdle preventing businesses from migrating an application with regulated data to the cloud to begin with. TRiA provides a simple solution to this problem.
5 Compliance Insights automatically evaluate your multi-clouds’ compliance posture against revalt compliance stands.
6 The card points out where compliance checks are failing or passing. Each compliance check is part of a ‘Compliance Standard’ that is applied to your cloud deployment.
Note
The above screenshot shows that your AWS workload passes 17 out of 35 compliance checks contained within the HIPAA compliance standard.
7 A detailed report can be accessed via the View Detail button.
Compliance Insights Details
8 The `Compliance Insights Detail` view provides a paginated list of your running, passed and failed compliance insights.
9 Each insight runs a series of checks against your `Impacted Resources` .
The view can be searched and filtered by:
10 insights,
11 resource types,
12 and drilled down by your scoped resources and filters to surface specific compliance problems of interest among your resources.
8 An insight report can be accessed for each individual insight via the Insights column.
9 Your `Impacted Resources` are `Cloud Resources` that either failed or passed a compliance check that is associated with each `Compliance Insight`. The included link will direct you to the `Resource Management` view which is `pre-filtered` by the selected `Compliance Insight` allowing you to survey all impacted cloud-resources.
Each Compliance Insight derives from an established compliance standard, such as HIPAA or PCI, or a custom combination of `Compliance Insights` bespoke to your organization’s compliance needs. These standards are applied to your cloud deployment. Each standard then uses the `Compliance Insights` in your `Compliance Pack` to check for violations of the standard.
13 You can access your applied and available Compliance packs via the `Compliance Packs` and ‘Custom Packs` 14 tabs above.
Compliance Packs
Compliance Packs 13+14 reflect an established or custom compliance standard, such as HIPAA or PCI. Each pack combines list of `Compliance Insights`.
They can be applied to your cloud environments and institute checks that are surfaced via the `Compliance Details View`.
15 Users can also pick and combine individual `Compliance Insights` into a `Custom Pack` via the `ACTIONS` 16 drop down. Other actions include favoriting, removing, and editing the meta-data and/or severity of a given `Compliance Insight`.
Insight Report
10 Insight Reports provide a detailed description of what each `Compliance Insight` is checked for.
11 It also displays a list of Cloud Accounts that are impacted by the selected `Compliance Insight`.
Compliance Report
TRiA Compliance Reports deliver a monthly compliance audit for your IBMi Logical Partitions (LPARs).
1 The LPAR drop-down permits switching between available `Compliance Reports`for each LPAR.
3 The View LPAR button directs you to the IBMi Dashboard.
2 A detailed `Risk Status Report` can be downloaded for each LPAR’s assessment cycle. This report provides a detailed list of passed and failed compliance checks. The list of compliance attributes is based on Connectria’s longstanding expertise in the security and compliance management of workloads deployed to IBMi and the cloud.
AWS Security Advisories
AWS Security Advisories provide a quick overview of anything that may affect your AWS Cloud’s security posture. It includes passed security checks, issued warnings and security alerts.
By default, the TRiA Dashboard only displays the top three alerts. The `AWS Security Advisories Detail` view provides a comprehensive list of all passed checks, warning as well as alerts and alert details.
Azure Security Advisories
Azure Security Advisories provide a quick overview of anything that may affect your AWS Cloud’s security posture. It includes passed security checks, issued warnings and security alerts.
By default, the TRiA Dashboard only displays the top three alerts. The Azure Security Advisories Detail view provides a comprehensive list of all passed checks, warning as well as alerts and alert details.