Zscaler Advanced SaaS Security Posture Management (SSPM) enables organizations to monitor their Software as a Service (SaaS) applications’ security posture against various compliance frameworks such as GDPR, NIST, etc. The Compliance page provides a complete mapping of controls within various compliance frameworks and helps to verify whether they are enforced according to the security checks.

If you subscribed to the Advanced SSPM service, you can access the Compliance page. To learn more, see What Is Advanced Posture Management?

About the Compliance Page

On the Compliance page, you can do the following:

1. View the overall compliance status for the security checks.
2. View the compliance status by framework or platform. Expand a framework or a platform to view the status breakdown by tenants.
3. Search for a framework by its name.
4. Filter the framework by its name.
5. View a list of all the compliance frameworks. For each framework, you can view:
   • Framework: The name of the framework. Expand the framework name to view a list of security checks associated with that framework. Click a security check to open the control panel and further review it.
   • Control: The compliance control that is scanned against the framework.
   • Security checks: The number of security checks for the framework.
   • Status: The status of the framework. The status can be one of the following:
     • Failed: The controls failed the security checks.
     • Partial: The controls partially passed the security checks.
     • Success: The controls passed all the security checks.
   • Tenant: The name of the SaaS application tenant.

When a single tenant or multiple tenants are onboarded for Advanced SSPM, a message displays indicating that the tenants are still being processed.