Compliance Reporting templates

%3CLINGO-SUB%20id%3D%22lingo-sub-2711182%22%20slang%3D%22en-US%22%3ECompliance%20Reporting%20templates%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2711182%22%20slang%3D%22en-US%22%3E%3CP%3EHi%2C%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EHow%20can%20we%20create%20regulatory%20compliance%20reporting%20workbook%20template%20such%20as%20PCI%20DSS%2C%20HIPPA%2C%20ISO%2027001%2C%20etc%20in%20Sentinel%3F%20Any%20OOB%20template%20will%20be%20very%20helpful.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2711255%22%20slang%3D%22en-US%22%3ERe%3A%20Compliance%20Reporting%20templates%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2711255%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F1140134%22%20target%3D%22_blank%22%3E%40Rakesh465%3C%2FA%3E%26nbsp%3BThere%20really%20is%20no%20easy%20answer%20to%20this%20question.%26nbsp%3B%20First%2C%20you%20would%20need%20to%20understand%20the%20compliance%20rules%20you%20want%20to%20report%20on%20in-depth.%26nbsp%3B%20Then%2C%20you%20would%20also%20need%20how%20Azure%20handles%20each%20rule%20and%20you%20have%20to%20determine%20if%20it%20is%20possible%20to%20get%20that%20information%20into%20Azure%20Sentinel%20and%20write%20the%20queries%20for%20the%20workbook.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EAzure%20Security%20Center%20is%20a%20far%20better%20tool%20for%20this%20as%20it%20has%20a%20lot%20of%20the%20guidance%20for%20these%20regulations%20already%20either%20out%20of%20the%20box%20or%20available%20for%20download.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EIf%20you%20do%20need%20it%20in%20Azure%20Sentinel%20I%20would%20suggest%20looking%20at%20the%20Zero%20Trust%20(TIC3.0)%20workbook%20to%20see%20how%20it%20gathers%20its%20information%3C%2FP%3E%3C%2FLINGO-BODY%3E
Microsoft

Hi,

 

How can we create regulatory compliance reporting workbook template such as PCI DSS, HIPPA, ISO 27001, etc in Sentinel? Any OOB template will be very helpful.

1 Reply

@Rakesh465 There really is no easy answer to this question.  First, you would need to understand the compliance rules you want to report on in-depth.  Then, you would also need how Azure handles each rule and you have to determine if it is possible to get that information into Azure Sentinel and write the queries for the workbook.

 

Azure Security Center is a far better tool for this as it has a lot of the guidance for these regulations already either out of the box or available for download.

 

If you do need it in Azure Sentinel I would suggest looking at the Zero Trust (TIC3.0) workbook to see how it gathers its information