This document describes how to remediate findings in reports.
A report combines aggregate findings from Security Command Center and inventory data from Cloud Asset Inventory to give an aggregate view of risk across your organization. These reports are aligned with the CIS Google Cloud Computing Foundations Benchmark v1.2.0. For more information on this framework, see CIS Benchmarks.
As a best practice, start by remediating the findings that have the highest impact, as indicated in a Cyber Insurance Hub report.
Before you begin
Remediating CIS Benchmark findings
Cyber Insurance Hub has integrated with Security Command Center Premium and Enterprise tiers to simplify the remediation process for CIS Benchmark findings. If you're a Security Command Center Standard tier customer, you can't use Security Command Center to inspect and remediate all individual CIS Benchmark findings on your Google Cloud resources. Upgrade to Premium tier or Enterprise tier to get full support. See Activation overview for more detailed information about how to activate each Security Command Center tier.
Remediating CIS Benchmark findings with Security Command Center Premium or Enterprise tier
To inspect and remediate individual findings using Security Command Center, follow these steps:
In a report, in the table of CIS benchmark topics, expand a CIS Benchmark topic to view the CIS Benchmarks for that topic.
In a CIS Benchmark table row, click the finding count.
This links to Security Command Center to display the active findings related to that CIS Benchmark.
In Security Command Center, in the table of findings, click the category of the finding that you want to remediate.
A pane opens with information on how to remediate that finding.
Remediating CIS Benchmarks with Security Command Center Standard tier
While Cyber Insurance Hub reports provide a table of the CIS Benchmark topics identified across your organization, Security Command Center Standard tier doesn't let you pivot directly to the related findings in Security Command Center.
To view instructions on how to remediate general CIS Benchmarks, follow these steps:
In a report, in the table of CIS benchmark topics, expand a CIS Benchmark topic to view the CIS Benchmarks for that topic.
In a CIS Benchmark table row, click the CIS Benchmark description.
This links to the general remediation instructions for that CIS Benchmark.
You can also use the following instructions to remediate findings for CIS Benchmarks supported by Cyber Insurance Hub:
What's next?
- Learn how to approve a report.
- Learn how to share a report with insurance partners.