The key highlights of this release are:
CSPM (Cloud Security & Posture Management):
RBAC – The support for RBAC controls at the account group level. You can limit the access of users and administrators to a specific account group(s). Users can also set their default view across all C3M Dashboards by selecting their preferred cloud accounts or account groups.
CQL on AWS Policy Conditions – You can define CQLs on the conditions in Policy Statements.
E.g., CMK should not have policyStatement with [condition with [operator = ‘Bool’ and opKey = ‘kms:GrantIsForAWSResource’ and opValue = ‘true
Enriched Resource-Specific View – You can see both predefined and custom policy alerts for each violating resource.
New Policies – Added new policies on GCP, AWS, and Azure.
GCP Playbooks – GCP playbooks support to extend our SOAR offering. You can leverage our predefined actions and configure auto-remediations for GCP policy violations. Playbooks are based on a serverless framework, and you need to deploy the remediation module in a designated GCP project.
CIEM (Cloud Infrastructure Entitlement Management):
New IAM Overview Dashboard – Visibility into your IAM specific alerts, privileged identities, over-provisioned members, broad access resources, top 5 IAM alerts, and much more.