5.10.6 Enable Cloud Security Command Center (Cloud SCC)

Information

Enable Cloud Security Command Center (Cloud SCC) to provide a centralized view of security for your GKE clusters.

Rationale:

Cloud Security Command Center (Cloud SCC) is the canonical security and data risk database for GCP. Cloud SCC enables you to understand your security and data attack surface by providing asset inventory, discovery, search, and management.

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.

Solution

Follow the instructions at https://cloud.google.com/security-command-center/docs/quickstart-scc-setup.

Impact:

None.

Default Value:

By default, Cloud SCC is disabled.

See Also

https://workbench.cisecurity.org/files/2764