Introduction

In the platform, a framework is used to create widget-based dashboards, resize widgets, save widgets, add permissions for dashboards, and more.

These dashboards are dynamic in nature. A user can create their own dashboard and add various widgets to look at the data as per their convenience and requirement. A user can create multiple dashboards. Based on the user-role, certain users can share the dashboard with another user by assigning relevant permissions.

This user guide will focus on the AppSecOps Dashboard, how users can leverage it to understand their cloud security and visualize it in meaningful ways, and how they can create and modify their own custom dashboards.

Key Features

Cloud Provider Specific Dashboards & Filters

• For users focusing on a single cloud provider, we’ve introduced provider-specific AppSecOps dashboards for AWS, Azure, GCP, and OCI. These dashboards offer detailed visibility into security trends, ensuring that partners and enterprises can effectively manage cloud spend using native cloud terminology.

Multi-Cloud Dashboards & Filters

• For those managing multi-cloud environments, our new Multi-Cloud AppSecOps Dashboards provide a unified financial view across AWS, Azure, GCP, and OCI.
  • Enables seamless cross-cloud analysis, improving transparency and multi-cloud security governance.

Filter Management at Dashboard Scope

• Enhanced Filter Management for dashboards empowers users with greater control over filter visibility and functionality. By managing both Filter Keys and Filter Values, dashboard creators can deliver highly tailored and simplified experiences for their users.
  • Control Filter Key Visibility: Users can hide specific filter keys to streamline the dashboard experience and minimize distractions. For example, users can exclude fields like Instance Type, Operating System, or Region if irrelevant to the dashboard's purpose.
  • Restrict Filter Values: Define which values within a filter are visible to users. For instance, display only specific tag values like Production while hiding others.

Visual Subscribe

• The new Visual Subscribe feature enhances the delivery of AppSecOps insights by enabling users to subscribe to dashboards, widgets, and/or views to customize and automate the distribution of tailored cloud financial data to stakeholders on a recurring basis (daily, weekly, etc.).
• This helps customers to keep teams informed and aligned with security and usage insights without requiring regular portal logins and/or by delivering tailored AppSecOps insights through automated PDF reports.

Manage Views

• Manage Views enhances user experience by allowing the saving and customization of page views, eliminating the need to re-select filters and settings each time a page is visited. This feature addresses the time-consuming process of manually configuring views, providing a more efficient workflow.
• Users can export dashboards with both configured and standard views and conveniently import them using the import functionality. Additionally, users have the option to create private views that are not included in the exported data.

Dashboard Permissions Enhancements

• We have enhanced the permissions feature to include permissions for custom roles and user groups, which were previously limited to system roles, as well as add the Subscribe permission to the existing set of role grants (e.g. Read, Edit, Share). This update allows for more granular control and flexibility in managing user access and capabilities.
  • Custom Role Permissions: Assign permissions to custom roles, not just system roles while sharing dashboards across multiple tenants.
  • User group Permissions: Assign permissions to user groups while sharing across tenants.
  • Subscription Permissions: Grant or deny permissions for roles to set up subscriptions. Users with roles that have this permission can create subscriptions for system views or their own custom views (provided they also have Edit permission).

AppSecOps Standardized Dashboard

To further enhance standardization, this release introduces a comprehensive set of pre-configured dashboards, ensuring that both partners and end customers can get started quickly with consistent financial insights across cloud environments.

• AppSecOps Dashboard - This dashboard helps users with a comprehensive overview of vulnerabilities, facilitating informed decisions, and proactive security management. This dashboard helps to enhance security posture, improve response times, and ultimately safeguard data against potential threats. Users can view the following widgets wihin this dashboard:
  • Risk-prioritized Actionable Supply Chain Issues: This widget shows a risk-prioritized list of top ten vulnerabilities for the selected filter scope.
  • Vulnerability Graph: This widget is an extensive network diagram that helps you understand your security posture. It illustrates supply chain vulnerabilities, showing their presence and prevalence in software components and their location within your infrastructure. Furthermore, it visualizes infrastructure vulnerabilities, misconfigurations, and threats found in your cloud resources, along with their interdependencies, and contextualizes all issues to the organizational hierarchy.
  • Vulnerability By Product: This widget shows the number of vulnerabilities associated with each of the software components in a heat map. This widget helps to identify which technologies are contributing the most to risk, allowing for better prioritization of remediation and risk management.
  • Vulnerability By Severity and KEV: This widget shows a breakdown of vulnerabilities by severity and KEV.
  • View Open Vulnerabilities By Severity: This widget shows the number of open vulnerabilities, categorized by severity levels (Critical, High, Medium, Low) over time.
  • Vulnerabilities Over Build: This widget helps users to monitor the trend of vulnerabilities across builds. The goal is to highlight how many vulnerabilities are newly introduced, how many are resolved, and how many software components are affected, enabling timely response before issues escalate.