ETM PC/SCA Integration
The PC/SCA integration with Enterprise TruRisk Management (ETM) connects your PC and SCA security posture information directly into the ETM platform. This integration enables security teams to view failed postures as misconfigurations within ETM's unified risk management interface. By consolidating security findings from PC and SCA into ETM, organisations gain comprehensive visibility into their security posture across the enterprise environment. They can manage risk more effectively through a single pane of glass.
Prerequisites
Before implementing the PC/SCA integration with ETM, ensure your environment meets the following requirements:
- PC/SCA must be enabled for your subscription
- The integration is supported for PCAS version 1.2.3 and above, and Enterprise TruRisk platform 10.32.1.0-1 and above. Verify your current versions before proceeding with the integration setup to ensure compatibility with ETM.
How Does the Integration Work?
The integration process follows these steps:
- Contact your TAM or support to enable your subscription's PC/SCA integration.
- Run a scan for both PC and SCA to generate current security posture data.
- The system automatically ingests findings from PC and SCA into ETM as misconfigurations.
- Failed postures from your PC/SCA environment appear in ETM with their respective risk scores, allowing for precise identification of security issues that require remediation.
The integration maintains data synchronization between the systems to ensure the latest security posture information is available in ETM for risk management.
View Assets and Findings in ETM
After completing the integration, you can view and manage PC/SCA findings within the ETM interface:
- Navigate to Risk Management > Findings > Misconfigurations to access the consolidated view of security posture findings.
- To filter specifically for PC or SCA findings, use the QQL query syntax:
finding.vendorProductName:PC
orfinding.vendorProductName:SCA
respectively.
The findings display detailed information about each misconfiguration, including the affected asset, severity, and current status. This information helps security teams prioritize remediation efforts based on risk levels and organizational impact.
By accessing PC/SCA findings directly within ETM, security teams can streamline their workflow and address security issues more efficiently without switching between multiple security management interfaces.