Skip to main content

Netskope Help

Next Generation Security Posture Policy

A security posture policy is a set of rules and compliance standards. A compliance standard is a policy library of security best practices. It is organized into sections and controls. Each control is mapped to one or many rules. A rule comprises of the Netskope Governance Language (NGL), a description of the rule, and a severity level. You can create a security posture policy for a SaaS app. An administrator can create a security posture policy to access and analyze the posture of the SaaS resources with industry benchmarks and best practices. An administrator can create a security posture policy with a set of rules and compliance standards. A compliance standard may comprise one or more rules. A compliance standard can be predefined such as the CIS Benchmark standard. A rule is a code snippet with associated metadata, such as severity, that is used to identify a specific violation of a SaaS resource.

A security posture policy has three functions:

  • What resource to scan: You can specify this by including or excluding instances.

  • Against what rules to scan: Control rules via compliance standards and rules.

  • What action to be taken: Alerts and email notifications.

You can create a security posture policy for a cloud service. To access the security posture policy page:

  1. Log in to the Netskope tenant UI.

  2. Navigate to Policies > Security Posture. Then, click the Next Gen tab.

    The Security Posture page opens.

  3. The Security Posture page displays a list of policies configured for the SaaS apps infrastructure. The fields are:

    • Policy Name: Name of the policy.

    • Instance: Name of the instance for which the policy is defined.

    • Rules: List the number of rules and compliance standards associated with the policy.

    • Last Edit: Time stamp of the last edited policy.

You can edit, disable, clone, and delete a policy. Click the More Options icon (...) to the right of the policy entry and select one of the following options:

  • Edit: On selecting this option, you can edit the policy.

  • Disable: On selecting this option, Netskope disables the policy and stops the scan for the policy.

  • Clone: On selecting the option, Netskope creates a duplicate copy of the policy.

  • Delete: On selecting this option, Netskope deletes the policy.

    Note

    If you delete a policy, scanning stops at the next scan interval. The existing scan continues to run till it finishes.

Also, you can perform the following tasks:

  • Search a policy from the Policy Name ~ search field.

  • Click + Add Filter to filter the policies based on App Suite, Compliance Standard, and Instance.