Continuous Compliance

A CloudGuard Dome9 continuous compliance policy is a compliance ruleset, associated with a cloud account and a notification policy. Dome9 continuously assesses the accounts in your compliance policies, with the rulesets you have selected, and notifies you of rules that failed using the notification policy you have selected. You can receive findings as email reports, messages to SNS topics, or as events sent to HTTP endpoints (webhooks).

Dome9 does not send notifications for issues already discovered (in a previous assessment by the same policy). So, you will receive a notification only the first time a rule fails, but not after subsequent assessments. If the issue is remedied, and the rule passes in a subsequent assessment, a 'pass' notification is sent to SNS and HTTP endpoints, but not to email notifications (in email reports it will not be in the list of failed rules).


See also

Compliance and Governance

The CloudGuard Dome9 GSL Language

CloudGuard Dome9 Notification Policies