Skip to main content

Conducting Cloud Security Assessments

Ensuring cloud security requires regular vulnerability assessments and compliance checks across various cloud providers.environments. The SecOps module in XOps 360 enables organizations to evaluate their security posture and compliance status across AWS, Azure, and Microsoft environments including Microsoft 365 and Entra ID.

This guide outlines the proceduressteps required to assessinitiate compliance scans and review security posture in AWS, Azure, and Microsoft Security (M365 & Entra ID).findings.

Cloud Security – AWS Security Assessment

  • Log in to the Platform

    • Access the platform and sign in using your credentials.
  • Navigate to Cloud SecuritySecOps

    • Open the Side Navigation Bar located on the left.left side of the screen.

    • Click onSecOps to expand the Cloud Security tab to accessavailable security tools.

      modules.
    • Select Compliance Dashboard .
  • Select Compliance Standard

    Under the Compliance Dashboard, choose one of the following AWS Securitycompliance frameworks:

    • Click on AWS CIS v5.0 (Center for Internet Security)

    • AWS SOC2 (System and Organization Controls 2)

    • AWS GDPR (General Data Protection Regulation)

    • AWS PCI DSS (Payment Card Industry Data Security Standard) to view available scanning options.

  • These frameworks evaluate AWS cloud configurations against industry security best practices.


Screenshot 2025-08-21 163250.png

  • Verify AWS Account

    • Ensure that an AWS account has already been added to the platform.

    • If no account is available, clickintegrate onthe +AWS Addaccount Newbefore Account..initiating the scan.

  • Choose a Compliance Standard

    • Select a compliance framework to evaluate security posture:

      • CIS (Center for Internet Security)

      • PCI DSS v3.2.1 (Payment Card Industry Data Security Standard)

      • GDPR (General Data Protection Regulation)

      • SOC2 (System and Organization Controls 2)

  • Initiate the Scan

    • Locate the AWS account under the selected compliance framework.

    • Click Scan to initiate an automated security check.

    • The system will analyze AWS configurations and security controls.

image.png

Monitor and Review Results

  • Monitor scan progress, and upon completion, a report will be generated then open it.

image.png

  • Review findings, including:

    • Compliance gaps

    • Security misconfigurations

    • Vulnerabilities

image.png

Cloud Security – Azure Security

  • Log in to the Platform

    • Access the platform and sign in using your credentials.
  • Navigate to Cloud SecuritySecOps

    • Open the Side Navigation Bar and

      select
    • Click CloudSecOps Security→ Compliance Dashboard.

  • Select Azure SecurityCompliance Standard
    Choose the compliance framework used to assess Azure security posture.

    • ClickAvailable frameworks include:

    • AzureISO Security27001 (International Organization for Standardization)

      to
      • access
    • scan

      SOC2 options.(System and Organization Controls 2)

    • CIS (Center for Internet Security)

  • These frameworks analyze Azure configurations against established security standards.

image.png

  • Verify Azure Account

    • Ensure that an Azure account has already been added to the platform.

    • If no account is available, click on + Add New Account..

  • Choose a Compliance Standard

    • Select a compliance framework forconnect the securityAzure assessment:account before running the scan.

      • ISO (International Organization for Standardization)

      • SOC2 (System and Organization Controls 2)

      • CIS (Center for Internet Security)

  • Initiate the Scan

    • Locate the Azure accountsubscription listed under the selected compliance framework.

    • Click Scan to startinitiate the Azure security analysis.assessment.

image.png

Monitor and Review Results

  • Monitor scan progress, and upon completion, a report will be generated then open it.

image.png

  • Analyze scan results to detect:

    • Compliance gaps

    • Security misconfigurations

    • Vulnerabilities

image.png

Cloud Security – Microsoft Security (M365 & Entra ID)

  • Log in to the Platform

    • Access the platform and sign in using your credentials.
  • Navigate to Cloud SecuritySecOps

    • Open the Side Navigation Bar and

      click
    • Click CloudSecOps Security→ Compliance Dashboard.

Microsoft Entra ID Security Assessment

  • Select MicrosoftEntra SecurityID
    • Under

      Clickthe MicrosoftCompliance SecurityDashboard, toclick accessEntra ID.

    • This feature evaluates identity security assessmentconfigurations tools.

      within
      • Microsoft
    Entra ID.

image.png

  • Verify Microsoft Account

    • Ensure that an Microsoft account has already been added to the platform.

    • If no account is available, click on + Add New Account..

  • Choose the desired Scan Type

    • Select the security scan based on the platform:

      • M365 (Microsoft 365) – Security and compliance assessment.

      • Entra ID (Identity Governance and Administration) – Identity security analysis.

  • Initiate the Scan

    • Locate the Microsoft account under the relevant security category.

    • Click Scan to start the assessment.

image.png

Monitor and Review Results

  • Track scan progress in the Cloud Security Dashboard.

image.png

  • Review scan findings to identify:

    • Security gaps

    • Misconfigurations

    • Vulnerabilities

image.png

Note:

  • For accessing historic reports or addressing scan failures, refer to the Report History Page for further details and View error.
Back to top