The ASPM Command Center is your central hub for real-time application security posture management across the SDLC. It offers critical insights to identify risks, track compliance, and enable secure development, transforming data into actionable cases.
The ASPM Command Center is the centralized dashboard for managing application security posture. The Command Center ingests the total of issues and findings from connected data sources and processes them through a prioritization pipeline, moving from a combined total through guardrail filtering and Urgency-based prioritization to produce actionable Cases (tracking both SLA and MTTR).
Scope: The Command Center orchestrates and prioritizes security work. The Command Center does not execute scans or enforce guardrails directly; those functions are performed by their respective subsystems. Instead, the Command Center serves as the connective decision layer, bridging these subsystems through unified visibility and the strategic aggregation of security data.
Prerequisites
Active Cortex Cloud license with Application Security entitlements
At least one VCS integration active with repositories onboarded
AppSec Admin role (or equivalent custom role with dashboard access permissions)
SBAC scope that includes the target applications (the Command Center displays only data within the assigned application scope)
Access the ASPM Command Center
Navigate to → , and select the ASPM Command Center dashboard.
Command Center layout
The Command Center landing page centralizes your security data into a single prioritization pipeline.
Contextual scoping and analysis
To ensure metrics reflect the correct posture, apply global filters and utilize the Agentic Assistant for ad-hoc queries before reviewing the dashboard data.
Control | Description |
|---|---|
Application filter | Scope the entire Command Center to a specific application or set of applications (select up to 10) |
Time range | Use 30D for posture reviews and 7D for active operational triage (options: 7D, 30D, 90D, All time) |
Agentic Assistant | Natural language side panel for ad-hoc queries, accessible from the Cortex Cloud global navigation bar (Copilot icon). Example queries:
For more information about the Agentic Assistant, refer to Agentic Assistant chat. |
Dashboard organization and interaction
Below the filters, the dashboard is organized into three main zones and a bottom bar, featuring interactive elements that open detailed views for deeper analysis:
1. Left zone (Data sources)
Overview display: Icons representing all connected data sources
Interaction: Selecting any data source icon opens the coverage page
Coverage modal contents: Highlights security blind spots and allows you to expand oversight
Total coverage: Overall percentage of repositories with active scanners
Coverage by provider/third-party data: Coverage percentages broken down by hosting platform (such as GitHub, GitLab, AWS). Selecting Increase coverage navigates to a view of all assets that lack coverage for that specific scanner
Coverage by scanner: Coverage percentages broken down by scanner type (such as vulnerabilities, code weakness). Select Increase coverage to enable missing scanners
2. Center zone (Issues funnel)
Overview display: Displays the total issues and blocked findings count. A funnel visualization summarizes the prioritization pipeline
Interaction: Select the funnel to open the prioritization and aggregation view
Prioritization and aggregation view contents: Visualizes how raw findings flow through four progressive stages of noise reduction and prioritization.
Stage 1: Total issues and findings: Raw count and percentage across all scanner types
Stage 2: Open after guardrails: Issues bypassing prevention policies. Displays counts for blocked in PR and blocked in build. Select View guardrails to navigate to AI-recommended policies
Stage 3: Prioritized: Top Urgent and Urgent issues filtered by deployment context, exploit intelligence, and business criticality. Select the count to view filtered issues. Displays Not in deployed repos metrics. Select View prioritized issues > currently open to navigate to the issues table filtered by prioritized issues and their status
Stage 4: Cases: Actionable issues grouped by asset attributes and issue type. Ticks display grouping dimensions
Issue types: Hover over the bottom icons for counts on vulnerabilities (SCA/CVE), code weakness (SAST), IaC misconfigurations, and secrets
3. Right zone (Cases)
Overview display: Displays the total number of cases created. Includes Open cases broken down by severity level (only displays Critical and High severity levels even though Medium or Low were also detected), SLA Violations displaying the count of cases that have exceeded their remediation SLA target alongside the percentage change from the previous month, and closed cases displaying Mean Time to Remediate (MTTR) alongside the percentage change from the previous month
Interactions:
Select Cases: Opens the Cases page displaying all cases, prioritized after filtering
Select Open: Opens the Cases page pre-filtered to display only the open cases
Select Closed: Opens the Cases page pre-filtered to display only the closed cases
4. Bottom bar
Overview display: Quick access to the total coverage gauge, riskiest apps rankings, and AI guardrails recommendations
Interactions:
Total coverage: Selecting the gauge opens the Coverage modal (detailed in zone 1 above)
Riskiest apps: Displays the top applications with Application Security related issues. Selecting an app opens a side panel for further investigation, which lists all identified issues for that application (including issues outside of the Application Security scope).
AI guardrails: Selecting this option opens the AppSec Policies page displaying a list of AI-recommended prevention policies
For more information, refer to Create a policy.