Monitor Security Posture Insights
Focus
Focus
Strata Cloud Manager

Monitor Security Posture Insights

Table of Contents

Monitor Security Posture Insights

Learn how to monitor security posture insights.
Where Can I Use This?What Do I Need?
You can use the Security Posture Insights dashboard to get visibility into the security status and trend of your deployment based on the security postures of the onboarded NGFW devices. The severity of the security score (0-100) and its corresponding security grade (good, fair, poor, critical) determine the security posture of a device. The security score is calculated based on the priority, quantity, type, and status of the open alerts.
  1. Navigate to Dashboards > Security Posture Insights to get started.
  2. View the health of your devices using the Device Security Posture. You can view the following:
    • The total number of onboarded NGFWs.
    • The number of devices that have not sent telemetry data for over 12 hours.
    • The priority of security score for the onboard devices in your deployment. Click the number link to know the device details and security statistics.
    For example, you can view 7 critical risks for all the devices.
    In this case, you can click on the critical alerts and see the devices that generate alerts. You can further drill down and notice that the “User credential protection” has not been enabled on the firewalls. You can address this issue across all devices to avoid phishing attacks.
  3. Review your devices that are most unhealthy and regressing security scores over the last 30 days. You can view the health of your devices, including their operational status, software version, and other important metrics.
    You can also notice if some devices are running outdated software versions. In this case, you can plan an upgrade to the latest recommended version, which you can find out by Upgrade Recommendations.
  4. Check the security posture trend of your deployment for the selected time period. Hover over the trigger point to know the devices and active alerts that are contributing to the security posture trend. You can view trends for one or more devices filtered by the hostname, model, or software version.
For more information, see Dashboard: Security Posture Insights.