Conducting Cloud Security Assessments

Ensuring cloud security requires regular vulnerability assessments and compliance checks across various cloud environments. The SecOps module in XOps 360 enables organizations to evaluate their security posture and compliance status across AWS, Azure, and Microsoft environments including Microsoft 365 and Entra ID.

This guide outlines the steps required to initiate compliance scans and review security findings.

Cloud Security – AWS Security Assessment

Log in to the Platform
- Access the platform and sign in using your credentials.
Navigate to SecOps
- Open the Side Navigation Bar located on the left side of the screen.
- Click SecOps to expand the available security modules.
- Select Compliance Dashboard .
Select Compliance Standard
Under the Compliance Dashboard, choose one of the following AWS compliance frameworks:
- AWS CIS v5.0 (Center for Internet Security)
- AWS SOC2 (System and Organization Controls 2)
- AWS GDPR (General Data Protection Regulation)
- AWS PCI DSS (Payment Card Industry Data Security Standard)
These frameworks evaluate AWS cloud configurations against industry security best practices.

Verify AWS Account
- Ensure that an AWS account has already been added to the platform.
- If no account is available, integrate the AWS account before initiating the scan.
Initiate the Scan
- Locate the AWS account under the selected compliance framework.
- Click Scan to initiate an automated security check.
- The system will analyze AWS configurations and security controls.

Monitor and Review Results

Monitor scan progress, and upon completion, a report will be generated then open it.

Review findings, including:
- Compliance gaps
- Security misconfigurations
- Vulnerabilities

Cloud Security – Azure Security

Log in to the Platform
- Access the platform and sign in using your credentials.
Navigate to SecOps
- Open the Side Navigation Bar
- Click SecOps → Compliance Dashboard.
Select Azure Compliance Standard
Choose the compliance framework used to assess Azure security posture.
- Available frameworks include:
- ISO 27001 (International Organization for Standardization)
- SOC2 (System and Organization Controls 2)
- CIS (Center for Internet Security)
These frameworks analyze Azure configurations against established security standards.

Verify Azure Account
- Ensure that an Azure account has already been added to the platform.
- If no account is available, connect the Azure account before running the scan.
Initiate the Scan
- Locate the Azure subscription listed under the selected compliance framework.
- Click Scan to initiate the Azure security assessment.

Monitor and Review Results

Monitor scan progress, and upon completion, a report will be generated then open it.

Analyze scan results to detect:
- Compliance gaps
- Security misconfigurations
- Vulnerabilities

Cloud Security – Microsoft Security (M365 & Entra ID)

Log in to the Platform
- Access the platform and sign in using your credentials.
Navigate to SecOps
- Open the Side Navigation Bar
- Click SecOps → Compliance Dashboard.

Microsoft Entra ID Security Assessment

Select Entra ID
Under the Compliance Dashboard, click Entra ID.
This feature evaluates identity security configurations within Microsoft Entra ID.

Verify Microsoft Tenant
- Ensure that the Microsoft Entra ID tenant has already been connected to the platform.
- If the tenant is not connected, integrate the Microsoft account before running the scan.
Initiate the Scan
- Locate the Entra ID tenant in the dashboard.
- Click Scan to start the assessment.

Monitor and Review Results

Track scan progress in the Scan History section.

Review scan findings to identify:
- Identity security issues
- Authentication policy risks
- Misconfigured access controls

Microsoft 365 Security Assessment

Select Microsoft 365
Navigate to SecOps → Compliance Dashboard → M365.
This feature evaluates the security posture of Microsoft 365 services.

Verify Microsoft 365 Tenant
- Ensure that the Microsoft 365 tenant has been connected to the platform.
- If no tenant is available, integrate the Microsoft account before initiating the scan.
Initiate the Scan
- Locate the Microsoft 365 tenant in the dashboard.
- Click Scan to start the assessment.

Monitor and Review Results
- Monitor scan progress under Scan History.
  - Once the scan is completed, review findings such as:
  - Security gaps
  - Compliance violations
  - Configuration risks

These results help strengthen the Microsoft 365 security posture.

Note:

For accessing historic reports or addressing scan failures, refer to the Report History Page for further details and View error.

Features

Account Registration

Subscription Plans

Account Management

Managing Subscriptions

AWS Account Integration

Azure Account Integration

Microsoft 365 Account Integration

Microsoft Entra ID Account Integration

EKS Integration

Executing Scans in CloudOps

Conducting Cloud Security Assessments

Performing Cyber Security Evaluations

Workload Security

Cloud Finops - Cost Management

EKS Deployment Guide

AWS Automation Suite - Production Ready Services

Azure Automation Suite - Enterprise Ready Services

Generating a Cloud FinOps Report

Generating a Cyber Security Report

Accessing and Managing Report History

Submitting Support Requests

Conducting Cloud Security Assessments

Cloud Security – AWS Security Assessment

Cloud Security – Azure Security

Cloud Security – Microsoft Security (M365 & Entra ID)