The above shows the compliance controls and assessments. You can select a filter for the compliance (all the supported or custom ones) e.g. ISO27001 and the state e.g. Failed.
This isn’t something you can do in the ASC portal, and I added a free form search bar, so you can use that to find other details.
You can also export this data to Excel (see the arrow in the bottom right corner of image 2).
I havealso re-created therecommendations viewyou see in ASC (as closely as possible, I have Networking in the list as an addition).
This tab relies on data from Azure Security Center from the Standard Tier.
The vulnerability scanner included with Azure Security Center is powered by Qualys. Qualys's scanner is the leading tool for real-time identification of vulnerabilities in your Azure Virtual Machines. It's only available to users on the standard pricing tier. You don't need a Qualys license or even a Qualys account - everything's handled seamlessly inside Security Center.
This part of the report starts of with a summary for Severity, Description and Category. Again, I have provided a drop-down filter, on Severity - would Category be a useful filter as well?
The final two reports check for Qualys recommendations that relate to a host (Computer), I then merge the prior two outputs to show “Computers that have AlertANDa Qualys recommendation” Thanks for the idea @Ofer!
This correlatesa Computer to a Security tool like Azure Security Center or Azure Sentinel (or any you have in your list), where we also have a Qualys recommendation.
Azure Advisor is often overlooked data, especially the cost saving recommendations!Azure Advisor now offers (or includes) Security recommendations Quickly and easily optimize your Azure deployments. Azure Advisor analyzes your configurations and usage telemetry and offers personalized, actionable recommendations to help you optimize your Azure resources for high availability, security, operational excellence, performance, and cost.