Release Date: 29th Sept 2025
This release introduces Cloud Security Risk Prioritization (CSRP) into Saner Cloud CNAPP suite, a feature rich tool helping organizations to proactively prioritize risks and remediate. Added to this, the release also presents updates in Cyber Hygiene Score (CHS) Custom Report.
Take a closer look at what’s new in Saner Cloud V.2.0.0.0.
- Cloud Security Risk Prioritization
- Advanced Risk Prioritization Framework
- MITRE ATT&CK Mapping and Remediation for Misconfigurations
2. Enhanced Cyber Hygiene Score (CHS) Custom Report Visualizations
Cloud Security Risk Prioritization(CSRP)
Saner Cloud Security Risk Prioritization (CSRP) enhances an organization’s ability to prioritize and remediate cloud security risks. It provides a structured approach that aligns risk classification with industry standards. The prioritization process considers multiple risk factors to determine which risks pose the greatest threat to business operations, allowing security teams to concentrate their efforts on the most critical issues first.
CSRP utilizes the Stakeholder-Specific Vulnerability Categorization (SSVC) decision tree model developed by CISA to improve risk categorization.
This model systematically categorizes detected risks into four actionable outcomes:
- Act: demands urgent remediation
- Attend: calls for supervisory attention and escalation
- Track*: involves closer monitoring
- Track: denotes issues requiring no immediate action
CSRP employs a multi-dimensional approach to assess cloud misconfigurations by evaluating several key factors:
- Misconfiguration Classification
- Exploitability Scoring
- Technical Impact Assessment
- Automatable Attack Evaluation
- Mission Impact Analysis
- Resource Prioritization through Tagging
In addition, the MITRE ATT&CK Mapping and Remediation for Misconfigurations integrates the MITRE ATT&CK framework into the risk prioritization process for targeted remediation actions.
With CSRP, users can initiate remediation actions for identified risks within CSRP’s key risk categories, allowing a faster and more efficient risk mitigation. The integration with Cloud Security Remediation Management (CSRM) allows for seamless remediation rollout using the Saner Cloud platform.
Cloud Security Risk Prioritization(CSRP) User guide
Saner Cloud Security Risk Prioritization Data Sheet
Enhanced Cyber Hygiene Score (CHS) Custom Reports
This release introduces new report capabilities in the Saner Cloud Cyber Hygiene Score (CCHS) module, assisting customers in reporting the status of their Cyber Hygiene Score and preparing for audits.
Newly Introduced Custom Reports:
1. Top 10 Services by Hygiene Score: Identify the services that contribute the most to the overall hygiene score.
2. Resource Severity Distribution: Examine the distribution of resource based on their risk status.
3. Risk Percentage by Resource Category: Gain insight into risk concentration across various resource types.
4. Concerning Resources Based on Geolocation:Detect region-specific risk hotspots and exposure patterns.
5. Top 5 Misconfiguration Risks: Highlight the most critical configuration weaknesses.
6. Top 5 Posture Anomaly Risks:Identify deviations from the normal security posture.
7. Top 5 Identities and Entitlement Risks: Reveal high-impact issues related to identity and privileges.
8. Top 5 Missing Patches by Risk: Identify unpatched vulnerabilities that are driving overall risk levels.
9. Cyber Hygiene Trend: Track improvements or declines in hygiene over time.
10. Risk Trend by Resources: Visualize changing risk patterns across different resource groups.
Your feedback is of paramount importance to us. If you have any feature suggestions that will elevate your experience with Saner Cloud, please feel free to contact us at [email protected].
