Security Posture Management
Identify & remediate configuration risks in your Cloud infrastructure
Version |
1.8.1 (View all) |
Compatible Kibana version(s) |
8.13.0 or higher |
Supported Serverless project types |
Security |
Subscription level |
Basic |
Level of support |
Elastic |
Use the Security Posture Management integration to maintain the confidentiality, integrity, and availability of your data in the cloud by continuously identifying configuration risks and vulnerabilities in your cloud infrastructure, like publicly exposed storage buckets, overly permissive networking objects and Log4j vulnerability in workloads. Read below to learn more about the components that make up security posture management; CSPM, KSPM and CNVM.
Cloud Security Posture Management (CSPM)
CSPM discovers and evaluates the services in your cloud environment, like storage, compute, IAM, and more, against hardening guidelines defined by the Center for Internet Security (CIS) to help you identify and remediate configurations risks like:
- Publicly exposed storage buckets
- IAM Users without MFA enabled
- Networking objects that allow ingress to remote server administration ports (22, 3389, etc.)
And much more! For a complete overview of CSPM, including step-by-step getting started guidance, check out CSPM's documentation.
Kubernetes Security Posture Management (KSPM)
KSPM discovers and evaluates the components that make up your Kubernetes cluster against hardening guidelines defined by the Center for Internet Security (CIS) to help you identify and remediate configurations risks like:
- Kubelete servers that allow anonymous auth
- Unencrypted traffic to load balancers
- Admission of containers with
allowPrivilegeEscalationpermissions
And much more! Check out the KSPM getting started guide for step-by-step guidance on how to get started with KSPM.
Cloud Native Vulnerability Management (CNVM)
Cloud Native Vulnerability Management (CNVM) - an efficient and comprehensive solution designed to discover and scan workloads to identify vulnerabilities in your cloud environment. With CNVM, you can effortlessly identify vulnerabilities in your cloud workloads like OS package vulnerabilities, and language-specific packages, among others. Our user-friendly interface also simplifies the process of triaging vulnerabilities and provides detailed vulnerability scan results in a concise and informative manner.
Check out the CNVM getting started guide for step-by-step guidance on how to get started with CNVM.
Using C/KSPM & CNVM
To use CSPM, KSPM and CNVM, you'll have to deploy each integration separately. After deploying integrations, the pages described below will begin to get populated with security posture data. Please read the respective use cases section for CSPM and KSPM for step-by-step instructions on how to use these pages to get insight into and improve your cloud security posture.
| Page | Description |
|---|---|
Posture Dashboard | The posture dashboard provides an overview of the security posture of both Cloud accounts and Kubernetes clusters monitored. You can access the posture dashboard via the dashboards section of the security solution. Please read the posture dashboard documentation to learn more. |
Findings | Findings communicate the configuration risks and vulnerabilities discovered in your environments. The findings page will always display the most up-to-date configuration risks and vulnerabilities found. You can access the findings page in the main navigation pane of the security solution. Please read the findings documentation to learn more. |
Benchmark Rules | Benchmarks hold the configuration rules that are used to assess your specific environments for secure configuration. You can access benchmark rules in the Manage section of the security solution under CLOUD SECURITY POSTURE. To learn more, please read the benchmark rules documentation |
As questions come up, check out the KSPM FAQ, CSPM FAQ, CNVM FAQ or reach out to use directly in our community slack workspace in the #security or #cloud-security channels.
Changelog
| Version | Details | Kibana version(s) |
|---|---|---|
1.8.1 | Bug fix View pull request | 8.13.0 or higher |
1.8.0 | Enhancement View pull request | 8.13.0 or higher |
1.7.1 | Bug fix View pull request | 8.12.0 or higher |
1.7.0 | Enhancement View pull request | 8.12.0 or higher |
1.6.5 | Bug fix View pull request | 8.11.0 or higher |
1.6.4 | Bug fix View pull request | 8.11.0 or higher |
1.6.3 | Bug fix View pull request | 8.11.0 or higher |
1.6.2 | Enhancement View pull request | 8.11.0 or higher |
1.6.1 | Enhancement View pull request | 8.11.0 or higher |
1.6.0 | Enhancement View pull request | 8.11.0 or higher |
1.5.2 | Enhancement View pull request | 8.10.0 or higher |
1.5.1 | Enhancement View pull request | 8.10.0 or higher |
1.5.0 | Enhancement View pull request | 8.10.0 or higher |
1.4.0 | Enhancement View pull request | 8.9.0 or higher |
1.3.0 | Enhancement View pull request | 8.8.0 or higher |
1.2.11 | Enhancement View pull request | 8.7.0 or higher |
1.2.10 | Bug fix View pull request | 8.7.0 or higher |
1.2.9 | Enhancement View pull request | 8.7.0 or higher |
1.2.8 | Enhancement View pull request | 8.7.0 or higher |
1.2.7 | Enhancement View pull request | 8.7.0 or higher |
1.2.6 | Enhancement View pull request | 8.7.0 or higher |
1.2.5 | Enhancement View pull request | 8.7.0 or higher |
1.2.4 | Enhancement View pull request | 8.7.0 or higher |
1.2.3 | Enhancement View pull request | 8.7.0 or higher |
1.2.2 | Enhancement View pull request | 8.7.0 or higher |
1.2.1 | Enhancement View pull request | 8.7.0 or higher |
1.2.0 | Enhancement View pull request | 8.7.0 or higher |
1.1.2 | Enhancement View pull request | 8.7.0 or higher |
1.1.1 | Enhancement View pull request | 8.6.0 or higher |
1.0.9 | Enhancement View pull request | 8.6.0 or higher |
1.1.0 | Enhancement View pull request | 8.7.0 or higher |
1.0.8 | Enhancement View pull request | 8.6.0 or higher |
1.0.7 | Enhancement View pull request | 8.6.0 or higher |
1.0.6 | Enhancement View pull request | 8.6.0 or higher |
1.0.5 | Bug fix View pull request | 8.5.0 or higher |
1.0.4 | Enhancement View pull request | 8.5.0 or higher |
1.0.3 | Enhancement View pull request | 8.5.0 or higher |
1.0.2 | Enhancement View pull request | 8.5.0 or higher |
1.0.1 | Enhancement View pull request | 8.5.0 or higher |
1.0.0 | Enhancement View pull request | 8.5.0 or higher |
0.0.33 | Enhancement View pull request | — |
0.0.32 | Enhancement View pull request | — |
0.0.31 | Enhancement View pull request | — |
0.0.30 | Enhancement View pull request | — |
0.0.29 | Enhancement View pull request | — |
0.0.28 | Enhancement View pull request | — |
0.0.27 | Enhancement View pull request | — |
0.0.26 | Enhancement View pull request | — |
0.0.25 | Bug fix View pull request | — |
0.0.24 | Enhancement View pull request | — |
0.0.23 | Bug fix View pull request | — |
0.0.22 | Enhancement View pull request | — |
0.0.21 | Enhancement View pull request | — |
0.0.20 | Enhancement View pull request | — |
0.0.19 | Enhancement View pull request | — |
0.0.18 | Enhancement View pull request | — |
0.0.17 | Enhancement View pull request | — |
0.0.16 | Enhancement View pull request | — |
0.0.15 | Enhancement View pull request | — |
0.0.14 | Enhancement View pull request | — |
0.0.13 | Enhancement View pull request | — |
0.0.12 | Enhancement View pull request | — |
0.0.11 | Enhancement View pull request | — |
0.0.10 | Enhancement View pull request | — |
0.0.9 | Enhancement View pull request | — |
0.0.8 | Enhancement View pull request | — |
0.0.7 | Enhancement View pull request | — |
0.0.6 | Enhancement View pull request | — |
0.0.5 | Enhancement View pull request | — |
0.0.4 | Enhancement View pull request | — |
0.0.3 | Enhancement View pull request | — |
0.0.2 | Enhancement View pull request | — |
0.0.1 | Enhancement View pull request | — |