The Compliance page in Prisma DSPM is designed to offer an at-a-glance view of your organization’s alignment with various compliance standards. The Compliance page enables you to monitor risks across supported cloud platforms and measure how well your security practices are performing against established compliance criteria.

The built-in standards cover a broad range of regulatory and industry requirements, enabling you to assess security across multiple dimensions.

For each compliance standard, the Compliance page provides the following information:

• Standard Description: A summary of the compliance standard’s purpose and scope.
• Compliance Check Results: A count of the unique resources monitored for compliance against the standard.
• Assets at Risk: The number of assets potentially at risk according to each compliance standard.
• Risk Findings: The total number of findings at risk, detected during compliance checks.

How to Use the Compliance Page

The Compliance page in Prisma DSPM offers a user-friendly way to explore compliance details for each supported standard.

1. Navigate to the Compliance Page:
   • From the top menu, select Compliance to access the Compliance dashboard.
     
     
2. Explore Supported Compliance Standards:
   • Each standard, such as SOC 2, ISO 27001, or NIST 800-53, appears as a separate entry with a clear display of compliance statistics. This includes a progress bar showing the percentage of checks passed, the total checks performed, and specific metrics for assets at risk and risk findings.
3. View Risk Findings:
   • Click View Risk Findings next to a standard compliance to open the Risks Findings tab, and view detailed risk data. Identify specific assets that may not meet the standard and explore remediation steps. For further information, see the Risks article.
4. Filter Standards:
   • Use the Search and Filter field to narrow down the standards displayed. This helps in focusing on a particular compliance standard or filtering based on specific risk factors relevant to your organization.
5. Analyze Compliance Status:
   • Review the Assets at Risk and Risk Findings metrics for each standard. The Assets at Risk number represents resources potentially vulnerable under the standard, while Risk Findings indicate the total number of findings at risk, detected during compliance checks.
6. View a Breakdown of the Risks
   • Click on each standard to view a breakdown of all the risks associated with the standard.
     
   • View the amount of checks passed for each risk.
   • Click each risk to open the Risks Findings tab, and view detailed risk data. For further information, see the Risks article.