Saner Cloud – V.1.0 Release Notes

You can define Watchlists to monitor critical cloud assets. Adding resources to the Watchlist enables proactive monitoring and ensures that any changes or risks associated with these critical resources are addressed promptly.

You can quickly identify which resources actively utilize the public network interfaces, and which ones do not, aiding in security and resource management decisions. These resources can include databases, storage buckets, or compute instances.

Gain an overview of resource distribution across AWS or Azure to monitor cloud assets and services in various geographic regions. This facilitates the identification of resource concentration and allows assessment of their security posture based on location.

CSAE provides a detailed view of each resource, including configurations, permissions, usage, and security posture. Additionally, you have an option to toggle between the Standard and JSON views by clicking the appropriate buttons within the individual resource details view.

CSAE automatically flags deprecated services that may pose security or functionality risks, allowing teams to migrate to newer alternatives before support is discontinued.

By executing automated scans and displaying outdated resources on a user-friendly dashboard, users can:

a) Identify deprecated or unsupported resources

b) Review and prioritize resources that are no longer in use or are vulnerable

c) Remove unnecessary resources

Gain insights into cloud expenditure from the dedicated cost and usage dashboard view, which breaks down costs at both the service and resource levels. This allows organizations to identify high-cost areas and make informed budgeting decisions.

The SecPod Default Benchmark provides a pre-configured, regulatory-compliant assessment framework aimed at streamlining risk identification and mitigation across cloud environments. The benchmark system scans resources and services against selected compliance standards on a scheduled or on-demand basis.

Saner CSPM offers fast and efficient evaluations of benchmarks, allowing organizations to quickly identify and resolve configuration issues during routine audits. This feature helps save time and ensures continuous compliance with security standards.

The Date-Wise Affected Resources Line Trend graph tracks the status of affected resources over time, helping you monitor their progress and avoid sudden spikes in non-compliance in the future.

Saner CSPM offers a comprehensive overview of primary benchmarks, showing their severity distribution and compliance status. You can track whether resources have passed, failed, or remain unchecked due to disabled checks or unavailable data, providing a clear understanding of your compliance posture.

Confidence Level indicates if the system is certain in determining if a detected issue or misconfiguration poses a risk. Anomalies in Saner CSPA are categorized based on a machine learning algorithm threshold or through pre-assigned severity levels. This breakdown helps prioritize actions, ensuring that critical issues are addressed first while allocating appropriate resources to less critical ones.

You have an option to look into the Confidence Level to make informed decisions from the:

— Posture Anomaly Details view within the CSPA dashboard

— Posture Anomaly Distribution(High, Medium, and Low) on the CSPA dashboard

The “All Anomalies” in Saner CSPA offers a visual representation of all the anomalies detected in the Saner Cloud account as well as the anomalies that are normalized(remediated).

Anomaly data is indicated in 2 different sections indicated by distinct color codes:

— Red: highlights critical issues that require immediate attention

— Green: provides assurance about resource categories that are not problematic and remediated

When certain anomalies for rules or resources no longer applicable, Saner CSPA provides you with the facility to whitelist or exclude these from the cloud security scans. Whitelisted anomalies are excluded from patching recommendations, allowing organizations to focus only on actionable security gaps.

Using the Remediation functionality within Saner CSRM, you can choose to remediate anomalies based on individual resources or apply fixes to all identified security gaps collectively. This reduces the manual effort required to secure cloud resources.

The “Patch Aging” dashboard view in Saner CSRM displays a time-based line plot that shows the correlation between the number of pending patches and their age in days, helping teams address older, high-risk vulnerabilities first.

The “Patching Impact” dashboard view in Saner CSRM plots the number of security rules fixed against the number of patches applied, offering a clear understanding of the effectiveness of remediation efforts.

Saner CIEM offers a built-in Policy Details Map that provides a visual representation of the relationships between an identity (user, group, role, or service account) and its entitlements, policies, and permissions in a cloud environment. It helps security teams understand how an identity can access resources and identify potential risks or policy misconfigurations.

When reviewing a policy, use the Evidence for Excessive Permission that pinpoints unnecessary permissions in AWS IAM policies and helps you understand and address excessive permissions.

Excessive permissions can lead to unauthorized access, data breaches, or misuse of resources, so identifying them is critical. Saner CIEM helps identify excessive permissions and ensures your resources are only accessible by those who need them, reducing security risks.

Critical activity logs are essential for monitoring, auditing, and securing cloud environments. These logs help organizations track actions, events, detect anomalies, and ensure compliance with security and governance policies.

Saner CIEM captures key security-related actions and events that could indicate a potential threat, policy violation, or operational issue. Every column provides vital piece of context about the logged event, enabling enhanced visibility, quick analysis, incident response, and compliance.

Saner CSRM allows you to quickly access the necessary tool for remediation and begin patching tasks. You can select the relevant tool: CSPM, CIEM, or CSPA(displayed as links) from the top-right of the dashboard to access the section in CSRM for remediation.

Addressing missing patches by creating remediation tasks is crucial for maintaining the security and stability of IT infrastructure. Saner CSRM provides a wizard-based approach to creating a remediation task for the missing patches.

Saner CSRM helps you identify the Top 10 missing patches across CSPM, CIEM, and CSPA that have the highest security impact. Patches are ranked based on a weighted score considering severity and the number of affected resources, ensuring the most critical anomalies are addressed first.

A time-based line plot shows the correlation between the number of pending patches and their age in days, helping teams address older, high-risk vulnerabilities first. The Patch Aging chart in Saner CSPA dashboard visually represents the duration during which patches remain unapplied in an IT environment. It illustrates the relationship between the number of pending patches and the number of days they have been outstanding.

This chart assists organizations in tracking and managing their patch deployment timelines. An upward trend indicates delays in patch deployment, which increases the organization’s exposure to vulnerabilities over an extended period. The creative visual employs characters or icons along the timeline to depict different stages of patch aging, including growth, decline, and subsequent resurgence.

The Patching Impact Chart in Saner CSRM plots the number of security rules fixed against the number of patches applied, offering a clear understanding on the effectiveness of remediation efforts.

You can begin the patch remediation process by following these steps in order: Finalize the job creation, Select the affected resources, Review the summary and adjust your selections as needed (this may involve skipping unnecessary patches), Enter the scheduling details, Assign a unique job name, Configure any additional options, if applicable, and Review the summary again.

At the final step of patching tasks creation, users with approval permissions can either approve the execution immediately or create a task for approval. Only approved tasks proceed to execution.