Posture Control (ZPC)
About Compliance
Organization cloud infrastructure is deployed on multiple cloud service providers catering to a global customer base. This leads to a huge set of compliance standards which organizations need to uphold. ZPC enables organizations to monitor their cloud compliance posture against multiple compliance benchmarks.
ZPC also compiles the policies offered in all the benchmarks and offers a Zscaler Best Practices benchmark for you to gauge your compliance across all available benchmarks. To view all benchmarks supported by ZPC, see Supported Benchmarks.
The compliance page provides the following benefits and enable you to:
- View your cloud infrastructure's compliance posture against industry standard and custom-made created benchmarks.
- View and manage compliance ignore rules to monitor relevant resources.
- View all the benchmarks offered by ZPC.
About the Compliance Page
On the Compliance page (Cloud Posture > Compliance), you can view the following tabs:
- Compliance
- Create a new custom benchmark.
- Search for a benchmark.
- View the following benchmark details:
- Benchmark Name: Select the benchmark name to see the benchmark details. To learn more, see About Benchmark Details.
- Cloud: View the cloud service provider types supported by the benchmark.
- Type: View whether the benchmark is predefined or custom.
- Policy Count: View the policy count in the benchmark.
- Compliance Score: View the compliance score percentage of your cloud deployment for the benchmark.
- State: Use the toggle bar to enable or disable the benchmark.
- Modify the table and its columns.
- Schedule a compliance benchmark report.
Close
- Ignore Rules
- Create a new ignore rule. To learn how to create a new ignore rule.
- Search for an ignore rule.
View the list of ignore rules. For each rule, you can see the following details:
- Rule Name: The name of the ignore rule. Select the compliance ignore rule name to see the ignore rule details, and edit, delete, or disable the rule.
- Rule Scope: The list of security policies, cloud accounts, tags, assets, and regions on which the rule is applied.
- Created By: The admin who created the compliance ignore rule.
- Created: The date and time when the filter was created.
- Last Updated by: The admin who last performed an action on the compliance ignore rule.
- Last Updated: The date and time when the filter was last modified.
- End Date: The date the compliance ignore rule is going to be disabled.
- State: Use the toggle bar to enable or disable the compliance ignore rule. To learn more, see Managing Compliance Ignore Rules.
- Modify the table and its columns.
- Edit or delete the compliance ignore rule.
Close
