Custom security standards in Cloud Advisor

One of Cloud Advisor's capabilities is to check infrastructure for the enforcement of controls, i.e., conditions that cloud resources must meet. For example, the product will notify you if it detects a VM with a public IP address.

In addition to predefined controls, you can create custom controls to enforce your own security policies. For example, you can use them to automate checks such as «EDR agent is installed on VM.»

The controls are combined into standards, where they can be structured by sections and requirements. Cloud Advisor contains many pre-installed standards such as FSTEC, FZ-152, CIS, PCI DSS, Yandex Cloud infrastructure security standard, and others.

The new version of Cloud Advisor now allows you to create custom standards. You can create different sections and requirements and assign predefined and custom controls to them. The product will automatically check the infrastructure for compliance with your organization's internal policies and regulations and generate a detailed report with a compliance assessment, a list of violations, and instructions for remediation.

The custom standards compliance report is available for download in PDF format. You can share it with interested parties, such as management, auditors, partners, or customers.