Netskope Help

Create a Security Assessment Policy

To create a security assessment policy:

  1. Log in to the Netskope tenant UI.

  2. Navigate to Policies > Security Posture.

    The Security Posture page loads.

  3. Click New Policy.

    The New Security Posture Policy page opens.

  4. Under Instances, select a cloud services provider (CSP) and click in the Account field to specify the CSP accounts. You can click the gear icon in the drop-down of the text field to view your CSP accounts configured under Settings > API-enabled Protection > Cloud Infrastructure.

    If no accounts are specified, then the policy applies to all accounts configured for security assessment for that CSP.

  5. Under Profile & Action, select the predefined security assessment profiles. By default, an alert is generated when a profile match is found.

    When you select Show Rules, the rules related to the selected profiles are displayed under Rules & Actions. You can click on the rule to view the rule details.

  6. Under Policy Name, provide a name for the policy.

    1. Expand Policy Description, enter a short description of the profile.

    2. Expand Email Notification and provide the following:

      • frequency of the notification

      • the recipients of the email notification

      • optionally, the sender's email address.

      Click Done.

  7. Under Status, click on the slider to enable the policy.

  8. Click Save to save the profile.

  9. On the Security Assessment page, click Apply Changes.

Once you apply the changes, Netskope accesses and analyzes the posture of the AWS, Azure, and Google Cloud Platform resources, and alerts the administrator for risk and possible remediation.