Enable Cloud Security Command Center (Cloud SCC)

Details

Enable Cloud Security Command Center (Cloud SCC) to provide a centralized view of security for your GKE clusters.

Rationale:

Cloud Security Command Center (Cloud SCC) is the canonical security and data risk database for GCP. Cloud SCC enables you to understand your security and data attack surface by providing asset inventory, discovery, search, and management.

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.

Solution

Follow the instructions at https://cloud.google.com/security-command-center/docs/quickstart-scc-setup.

Impact:

None.

Default Value:

By default, Cloud SCC is disabled.

Supportive Information

The following resource is also helpful.

https://workbench.cisecurity.org/files/2764

This control applies to the following type of system GCP.

References

CSCv7|2
CSCv7|3
CSCv7|4
CSCv7|5
CSCv7|6
CSCv7|9
CSCv7|10
CSCv7|11
CSCv7|12
CSCv7|13
CSCv7|14
CSCv7|16
CSCv7|18

Source

Tenable.com/audits

Updated on July 16, 2022

Was this article helpful?

Yes No

Details

Solution

Supportive Information

References

Source

Related Articles