Vendors Google Cloud Platform Security Command Center SCC Posture Violation Findings

SCC Posture Violation Findings

Security posture and compliance violations

Posture violation findings from Google Cloud Security Command Center, identifying resource configurations that don't align with your organization's security posture or Compliance Manager cloud controls.

posture compliance security-baseline policy-violation gcp

JSON Format 7 Fields Medium Frequency Generator

Preview Sample View Schema

Overview

Posture violation findings describe resource configurations that don't align with your organization's security posture templates or Compliance Manager cloud controls. These findings help maintain consistent security standards across GCP resources.

When Generated:

Resources don't meet Secure by Default posture template requirements
Compliance standard controls are violated (CIS, NIST, PCI-DSS, ISO 27001)
Organization security policies are not followed
Custom posture constraints are violated
Security baseline requirements are not met

Security Relevance:

High

Compliance:

CIS GCP Foundation 2.0 NIST 800-53 PCI DSS ISO 27001 SOC 2

Frequency Notes:

Posture violation findings are generated during security posture assessments. Frequency increases when new resources are created or existing resources are modified. Business hours typically see more violations as development and deployment activities occur.

Resources

Documentation

Finding Classes - Posture Violation official
Security Posture Overview official
Compliance Manager official
Posture Templates official

Generation Configuration

Base Frequency: 20 events/hour

Time Patterns:

business_hours night_hours weekend

Business Hours Multiplier: 1.6x

Night Hours Multiplier: 0.7x

Weekend Multiplier: 0.4x

Field Definitions

Complete field reference for this event type with data types, descriptions, and example values.

Field Name	Type	Required	Format	Description	Example	Possible Values
name Source: Constructed with 'posture-' prefix	String	Required	`organizations/{org_id}/sources/{source_id}/locations/global/findings/posture-{finding_id}`	Full resource name of the posture violation finding	`organizations/123456789/sources/9732761411165682985/locations/global/findings/posture-abc123...`	—
category	String	Required	—	Posture violation category	`POSTURE_BASELINE_VIOLATION`	`POSTURE_BASELINE_VIOLATION` — Violation of security baseline requirements `COMPLIANCE_STANDARD_VIOLATION` — Violation of compliance standard control `SECURITY_POLICY_VIOLATION` — Violation of organization security policy `ORGANIZATION_POLICY_VIOLATION` — Violation of organization policy constraint
sourceProperties.postureViolation.postureTemplate	String	Required	—	Posture template that was violated	`Secure by Default - Essentials`	`Secure by Default - Essentials` — Essential secure by default requirements `Secure by Default - Extended` — Extended secure by default requirements `CIS GCP Foundation 2.0` — CIS benchmark requirements `NIST 800-53` — NIST security controls `PCI DSS` — PCI DSS requirements `ISO 27001` — ISO 27001 requirements
sourceProperties.compliance Source: Object with standard, version, control, and controlDescription	Object	Optional	—	Compliance standard and control information	—	—
sourceProperties.postureViolation.remediationGuidance Source: Context-specific remediation guidance	String	Required	—	Guidance for remediating the posture violation	`Apply Secure by Default posture template`	—
severity Source: random_weighted favoring MEDIUM (45%)	String	Required	—	Posture violation severity level	`HIGH`	`CRITICAL` — Critical posture violation `HIGH` — High severity posture violation `MEDIUM` — Medium severity posture violation `LOW` — Low severity posture violation
findingClass Source: Static 'POSTURE_VIOLATION'	String	Required	—	Finding class identifier	`POSTURE_VIOLATION`	—

Details

Fields

Medium

Frequency

Feedback

No ratings yet