License to view data from supported product in the
dashboard: Prisma Access
Navigate to Insights > POSTURE > Compliance Summary
to view a history of changes to the security checks made up to 12 months in the past,
grouped together by the Center for Internet Security (CIS) and the National Institute of
Standards and Technology (NIST) frameworks. For each framework, you’ll see a list of
controls as well as the percentage of current and average compliance rate, total number
of best practice checks, and the number of failed checks for each control. Interact with
the chart and the list to see the relationship between controls and their historical
statistics. View details of individual controls and their associated checks, and select
a best practice check to view the firewall configuration that is failing the
check.The CIS Critical Security Controls framework is a prioritized set of
recommended actions and best practices that help protect organizations and their data
from known cyber attack vectors.
You can view check summaries for 11 of the 16 basic and foundational CIS controls:
CSC 3: Continuous Vulnerability Management
CSC 4: Controlled Use of Administrative Privileges
CSC 6: Maintenance, Monitoring, and Analysis of Audit Logs
CSC 7: Email and Web Browser Protections
CSC 8: Malware Defenses
CSC 9: Limitation and Control of Network Ports, Protocols, and
Services
CSC 11: Secure configuration for Network Devices, such as Firewalls,
Routers, and Switches
CSC 12: Boundary Defense
CSC 13: Data Protection
CSC 14: Controlled Access Based on the Need to Know
CSC 16: Account Monitoring and Control
The NIST Cybersecurity Framework SP 800-53 Controls framework provides guidance
for federal agencies and other organizations to implement and maintain security and
privacy controls for their information systems. You can view check summaries for eight
families of NIST controls: