Experience Center
About the Control Panel
Advanced SaaS Security Posture Management (SSPM) provides a collection of recommended security posture controls that help organizations proactively identify, monitor, and remediate configuration vulnerabilities and compliance risks across their Software as a Service (SaaS) applications, ensuring continuous protection and alignment with industry standards. By default, all controls are enabled. Each one has a Control Panel that provides a deep dive into the control for a comprehensive picture of its security posture and compliance.
The Control Panel provides the following benefits and enables you to:
- Review and understand the control.
- View and change the severity level of the control, and enable or disable the control.
- Remediate your organization's SaaS security posture from potential threats.
- View the compliance information for the control.
- View assets' status and disable assets that have misconfigured attributes.
The Control Panel consists of the following:
- Control Panel Header
On the Control Panel header, you can do the following:
- View basic information such as the control's name, description, status (e.g., Fail), category (e.g., Administrator), tenant, and last scan time.
- View and change the severity level of the control. To learn more, see Updating the Control Severity.
- Enable or disable the control.
Close
- Remediation Tab
On the Remediation tab, you can do the following:
- View the steps to remediate your organization's security posture from potential threats. A link redirects you to remediation steps in the application's help documentation.
- View information about the impact on the user's experience after you remediate the misconfiguration.
- View information about potential security risks if the security posture is not configured per the recommended policy.
- View information about the MITRE ATT&CK tactic and techniques to understand the threat behavior and attack movement.
Close
- Compliance Tab
On the Compliance tab, you can do the following:
- Search for a compliance framework by its name.
- View a list of all the compliance frameworks the control is mapped to. For each framework, you can view:
- Name: The name of the compliance framework.
- Category: The category of the controls within the framework. This information helps organizations understand the types of controls to be implemented across different areas of their operations.
- No.: The compliance control number assigned to the control within the framework. This number helps organizations reference and implement controls systematically.
Close
- Assets Tab
On the Assets tab, you can do the following:
- View the violation description that informs why the policy failed or what was evaluated.
- View the number of assets by their status. The asset status can be one of the following:
- Fail: The assets failed to comply with the policy.
- Partial: The assets partially comply with the policy. For example, if a repository in GitHub has multiple branches, and some of the branches are misconfigured, then the status for that repository is Partial.
- Pass: The assets comply with the policy.
- Disabled: The assets are disabled.
The controls are evaluated based on individual assets or global configuration, depending on the capabilities supported on the SaaS platform.
- Search for an asset.
- Filter the assets by their enablement status, or Pass, Fail, or Partial status.
- Export the assets report to a CSV file.
- View a list of all the assets scanned against the policy. For each asset, you can view:
Asset: The name of the asset. Click the name to expand and view more details such as general information and evidence. Click Evidence, and then click Copy to copy the evidence, or click Download to download it as a JSON file.
- Status: The status of the asset.
- Enable or disable the asset.
The assets list is displayed depending on the platform. No assets are displayed for a global configuration.
Close
- Audit Log Tab
If the status of a policy is pending, the policy is not displayed on the Posture page.