Information
Enable Cloud Security Command Center (Cloud SCC) to provide a centralized view of security for your GKE clusters.
Rationale:
Cloud Security Command Center (Cloud SCC) is the canonical security and data risk database for GCP. Cloud SCC enables you to understand your security and data attack surface by providing asset inventory, discovery, search, and management.
Impact:
None.
NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.
Solution
Note: The Security Command Center Asset APIs have been deprecated, pending removal on or after 26th June 2024. Cloud Asset Inventory should be used instead.
Follow the instructions at: https://cloud.google.com/security-command-center/docs/quickstart-scc-setup.
Default Value:
By default, Cloud SCC is disabled.