This topic describes how to remediate findings in reports.
A report combines aggregate findings from Security Command Center and inventory data from Cloud Asset Inventory to give an aggregate view of risk across your organization. These reports are aligned with the CIS Google Cloud Computing Foundations Benchmark v1.0.0. For more information on this framework, see CIS Benchmarks.
As a best practice, start by remediating the findings that have the highest impact, as indicated in a Risk Manager report.
Before you begin
Remediating CIS Benchmark findings
Risk Manager has integrated with Security Command Center Premium tier to simplify the remediation process for CIS Benchmark findings. If you're a Security Command Center Standard tier customer, you can't use Security Command Center to inspect and remediate all individual CIS Benchmark findings on your Google Cloud resources. Upgrade to Premium tier to get full support. See Onboarding to Risk Manager for more information.
Remediating CIS Benchmark findings with Security Command Center Premium tier
To inspect and remediate individual findings using Security Command Center, follow these steps:
In a report, click on a CIS Benchmark description. A page opens with a table of findings in Security Command Center that correspond to that CIS Benchmark.
In the table, click on the category of the finding that you want to remediate. A pane opens with more information on that finding.
Under Remediation, follow the instructions on how to remediate the finding.
Remediating CIS Benchmark findings without Security Command Center Premium tier
Instructions on how to remediate findings for CIS Benchmarks supported by Risk Manager can be found below:
- Learn how to share a report for approval.