Remediation
Click here to see this page in full context

 

Remediation

The final step in the TotalCloud workflow is with remediating the prioritized vulnerabilities and misconfigurations. TotalCloud solution offers out-of-box one-click remediation for vulnerabilities.

Utilize QFlow no-code workflow engine to automate time-consuming and complete tasks with drag-and-drop visual workflows simplifying and accelerating tasks including assessments for ephemeral cloud assets, alerting for high-profile threats, or quarantining high-risk assets.

In the remediation tab, you are met with the total number of failed evaluations in your AWS environment.

Click on the evaluation count under the cloud provider account to view your cloud posture from Qualys CloudView. View detailed descriptions of the failed controls and find remediation instructions to follow. 

You can also click on 'IaC Posture' to find the compliance posture of resources residing in your Infrastructure as Code (IaC) templates.

Note:  The IaC evaluations are displayed for scans initiated from Git integrations. For more information on Git integrations, refer to Secure IaC section in CloudView User Guide.

Click any control to get details of all the resources evaluated against the control.

Controls that match your search query are displayed in the seach results.

Click Remediate Now to be directed to Patch Management and its one-click remediation solution. Patch Management identifies the required patches for non-compliant resources to pass the CIS Benchmark scores. 

If these out-of-box remediations don’t meet your needs, then you can build your own using Qualys Flow (QFlow), a low-code/no-code drag-and-drop product to build cloud-native workflows.