Recommendations

The recommendations dashboard offer insights into the security findings displayed in the Compliance dashboard and provides resolutions.

While the security findings mentioned in the Compliance Dashboard have individual recommendation view buttons, in the Recommendation dashboard, these are grouped under a policy name.

This dashboard is split into three main sections – Tenant wise Summary, Summary and All Recommendations.

Tenant wise Summary: Admin can view the recommendation details of each tenant separately based on the selection.

Summary

This section shows 5 types of crucial data:

  1. Total Recommendations – This shows the total number of recommendations
  2. Open Recommendations – This shows the number of unresolved and open recommendations
  3. Skipped Recommendations – These are the recommendations that have been acknowledged but will not be resolved. The user wants the status quo maintained
  4. Cost Savings Recommended – Shows the dollar value that can be saved by following recommendations
  5. Cost Savings Till Date – The dollar value saved by following recommendations till date is listed here

All Recommendations

Toggle View

You can toggle the view to list the recommendations as per Category or Account. Let’s click category to view the recommendations filtered for Security, Cost Optimization and Standards categories.

Click on a recommendation to view it in detail and obtain the list of impacted resources.

Change the Recommendation Status

The recommendation status varies from policy to policy. For example, for a storage policy, it can be delete storage, for a security group policy it can be revoke rule, etc.

Revoke – This action will resolve the issue by correcting the fault. For example if an RDP port is open, using revoke will close the port. Also, it will ensure that from the next time the system itself will close the port and not allow it to become a security finding.

Skip – This action will acknowledge the issue but will not have any impact on the finding. CoreStack’s machine learning capabilities will learn to not mark it as a security finding in the future.

Steps to apply actions to a recommendation:

  1. Click on a recommendation to view the list of impacted resources.
  2. In the Impacted Resources list, select a resource and then from the drop-down menu select an action.

In this example, we select a Security Group policy related recommendation, and revoke the SecurityGroup rule.

The rule has been revoked and the recommendation has helped resolve the security finding.

Cost Savings Recommended

Every cent saved using CoreStack is measurable using the cost savings recommended feature. Whenever a Cost Optimization recommendation is accepted and marked resolved, the dollar amount saved is added in the cost savings recommended counter.