Navigating Warden Dashboard

sidebar-1

Sidebar

Open Findings 

The Open Findings donut chart shows the total of all the open findings by severity level.

Compliance Graph

The Compliance graph shows your overall compliance posture for three compliance standards at a time.

It also allows you to choose which compliance standards you would like to see (see How to Change Compliance Graph Filters below)

Dashboard Body

newdash1

Filters

Filters allow you to only show the findings relevant to the criteria you select. You can filter the content on the dashboard based on:

  • Severity
  • Scan Groups

Note: The filters are not global and only affect the right side of the Dashboard.

Open Findings

The Open Findings graph shows the trend of the number of findings for each scan group over time. 

Change History: Finding Changes

2020-06-15_13-08-00-1

Existing severity and scan group filters on the Dashboard apply to this section as well.

1. Date Picker

The date picker allows you to select the date range for the data you want to see. You can filter checks by week (default) or by month. datepicker

2. New Findings

Failed checks (including those previously suppressed) that 

  • Have not appeared before
  • Or previously passed but have now failed. 

3. Resolved Findings

Checks which have been fixed that

  • Either failed before and now passed
  • Or whose resource context it was referencing is missing 

4. Modified Findings

Failed findings whose severity level got changed, or whose status got suppressed through Vulnerability Management

5. Rule Title

The Warden rule being checked.

6. Cloud Account

The Cloud Account being checked on 

7. Severity

The default severity of the Warden rule

8. Region

The region a resource belongs to.

9. Resource Type

The type of resource.

10. Resource

The resource being checked on.

11. Current Severity 

The check’s current severity level (for New and Resolved findings) and the change in severity for a timeframe (for Modified findings). 

12. Current Status

The current status of a check: 

  • New Findings and Resolved Findings 
    • Pass: Checks that passed
    • Open: Failed checks that have not been triaged yet through Vulnerability Management 
    • Risk Accepted, False Positive, or Remediated: See Status Descriptions for more information.
  • Modified Findings: the change in status for a check during a timeframe

13. History Tooltip

A tooltip that shows you the history for a specific check.

14. Resolve

The Resolve button shows the details for a failed check.

Change History: History Tooltip

history-1

1. Changes

The changes linked to a specific check. Here are the list of possible changes:

  • First check performed: Warden performs the check for the first time.
  • Check now Failing: Warden detected a failed check, eg. misconfiguration.
  • Check now Passing: The failed check was resolved.
  • Check now Suppressed: The check was suppressed through Vulnerability Management.
  • Check no longer performed: The resource linked to the check is no longer detectable.
  • Severity changed by {User}: A user within the organization changed the check’s severity level.
  • Status changed by {User}: A user within the organization changed the check’s status.

2. Notes

Any notes accompanying the changes.

3. Timestamp

The date and time a change happened.

Resources and Regions 

resources-3

1. Resources

The Resource table shows the breakdown of how many open findings there are for each resource type.

2. Regions

The Regions table shows the breakdown of how many open findings there are for each region.

How to Change Compliance Graph Filters


To change the compliance standards the Compliance graph shows:

  1. Click on the Filter () icon.
  2. Check the compliance standards you want to show on the graph.

navigating-warden-dashboard-1

Note: You can select up to three standards to show on the graph at any one time.