Manage IaC compliance assessments and reports directly in the tenant to generate and download audit-ready compliance evidence. You can view mapped rules, enforce compliance via policies, and filter issues by specific regulatory controls.
View IaC compliance rules mapped to compliance standards and controls
You can view and modify compliance standards mapped to specific IaC rules in AppSec Rules to control which rules are evaluated for compliance and ensure that findings are correctly attributed to the intended compliance framework.
Navigate to → → .
Filter the table by IaC -supported Compliance Standards OR Compliance Controls attributes.
Danger
Add these properties to the IaC Rules table through the Table Settings Menu, as they are not exposed by default.
Create Cortex Cloud Application Security policies with IaC compliance conditions
Create policies to include or exclude findings based on specific IaC compliance standards and controls. This provides precise control over automated issue creation and build-blocking.
Navigate to → → → .
Follow the standard procedure in the policy wizard. The configuration for all steps remains the same, except for the Conditions step.
On the Conditions step of the wizard.
Apply a compliance filter: Select either Compliance Standard or Compliance Control as the attribute.
Select the required values for the standard or control.