Enable Data Security Findings for GCP

Data Security Findings helps you discover and prioritize sensitive data risks in your GCP environment by automatically identifying and classifying sensitive information such as Personally Identifiable Information (PII), Protected Health Information (PHI), and financial data. This add-on keeps sensitive information within your GCP account while providing visibility across your environment. The findings can be used by Sysdig’s Risk engine to highlight potential blast radius during investigations and guide remediation efforts.

Sensitive data is analyzed in-place and remains within your GCP accounts during scanning.

GCP services that are currently supported for scanning include:

  • Google Cloud Storage (GCS) buckets

Prerequisites

  • A GCP Account or Organization already connected to Sysdig.
  • A Sysdig Secure Risk Management or CNAPP subscription with the Data Security Findings add-on.

Data Security Findings is currently available through a guided onboarding process. Contact your Sysdig account team or support representative to enable this feature.

Enable Data Security Findings

  1. Contact your Sysdig account team or support representative to enable Data Security Findings for your GCP accounts.
  2. Once provisioned, log in to Sysdig Secure and navigate to Integrations > Cloud Accounts | GCP.
  3. Select the GCP account you want to verify. Data Security Findings will appear in the features list once enabled.

Check Enabled Status

You can confirm whether Data Security Findings is active for your account:

  1. In Sysdig Secure, go to Integrations > Environments | GCP.

  2. Select the account.

    The detail panel on the right will show the status of Data Security Findings.

  3. If onboarding is complete, the feature status will show Enabled or Healthy.