Posture Policies

Sysdig Posture Policies allow you to configure what Compliance evaluates,in the context of compliance standards, such as Center for Internet Security (CIS) and the National Institute of Standards and Technology (NIST). This page provides the conceptual background needed to create, edit, and apply compliance policies in your own environment.

Use Posture Policies to:

  • Find policies that meet your organization’s needs.
  • Create custom policies and configure controls for each requirement.
  • Review a policy’s structure and the controls connected to it.
  • Enable/disable controls on policies.
  • Filter controls by enablement status, violation severity, name, and control type.

We add new policies regularly. You can find a comprehensive list of included posture policies on the Posture Policies page in Sysdig Secure.

Prerequisites

This feature requires the Compliance component.

You might review:

  1. Log in to Sysdig Secure and select Policies > Posture > Policies.

  2. Review the Policies list. Available policies are listed alphabetically.

    • Policy Name/Description: Displays the full policy name and description in accordance with the relevant authority, such as CIS or NIST. Click the arrow to link directly to the relevant standards website, where applicable.

    • Zones: Displays the zones where this policy has been applied. Apply a policy to a zone to show compliance results against the policy on the compliance page.

      See Zones.

    • Version: Lists the version of the standard published. It is not to be confused with the version, for example, of Kubernetes, listed in the policy name.

    • Date Published: Date the policy was published. Until officially published, a policy under development is in Draft state.

    • Author: Sysdig for default policies. creator name for custom policies.

  3. Click a row to open the individual policy page.

Filter Posture Policies

You can search or filter the Posture Policies list by:

  • Free-text search for keywords
  • Published/Draft status
    • Policies published by Sysdig will display a Date Published.
    • Custom policies can be in Draft state until the author publishes them. See Create a Custom Policy.

Next Steps

Manage Posture Policies

Manage Posture Controls