49 lines
1.7 KiB
Markdown
49 lines
1.7 KiB
Markdown
---
|
||
title: "Cloud Security Posture Management"
|
||
type: concept
|
||
tags: [Security, Cloud, CSPM, Compliance, Monitoring]
|
||
date: 2026-04-14
|
||
---
|
||
|
||
## Definition
|
||
云安全态势管理(Cloud Security Posture Management,CSPM)是一种持续监控云资源配置合规性的解决方案,解决多云环境安全割裂和缺乏统一视图的问题。
|
||
|
||
## Core Problems Solved
|
||
- 多云账户安全管理割裂
|
||
- 缺乏公共云安全态势的集中视图
|
||
- 事件响应时间长
|
||
- 合规性评估困难
|
||
|
||
## Core Features
|
||
1. **发现(Discovery)**:自动发现云环境中的所有资产
|
||
2. **监控(Monitoring)**:持续监控安全配置
|
||
3. **评估(Assessment)**:基于合规框架(CIS、NIST、ISO)进行评估
|
||
4. **保护(Protection)**:提供修复建议和自动修复能力
|
||
|
||
## Key Requirements
|
||
- 整合多个云账户的错误配置到单一平台
|
||
- 提供合规框架视图(CIS、NIST、ISO)
|
||
- 支持自定义策略
|
||
|
||
## Selected Solution: Cloud Guard
|
||
经过 POC 测试后选中,核心功能包括:
|
||
- 态势管理(Posture Management)
|
||
- 资产管理(Asset Management)
|
||
- 网络配置探索(Network Configuration Exploration)
|
||
- 事件管理(Event Management)
|
||
- 身份管理(Identity Management)
|
||
- 威胁情报(Intelligence)
|
||
|
||
## Onboarding Process
|
||
新账户在创建过程中自动接入 Cloud Guard,确保全面覆盖和相关规则集的应用。
|
||
|
||
## Related Entities
|
||
- [[Coyote]] — Head of Enterprise Application Security
|
||
|
||
## Related Concepts
|
||
- [[Three-Lines-of-Defense]]
|
||
- [[Multi-Cloud]]
|
||
- [[Compliance-Enforcement]]
|
||
|
||
## Related Sources
|
||
- [[CTP Topic 52 3 Lines of Defence (3LoD) framework Cloud Security Posture Management (CSPM)]] |