Assessments - View the latest compliance assessment results in the Assessment page. - Administrator Guide - Cortex XDR - Cortex

Assessments - View the latest compliance assessment results in the Assessment page. - Administrator Guide - Cortex XDR - Cortex - Security Operations

Cortex XDR 5.x Documentation

Product

Cortex XDR

License

XDR + Cloud

Creation date

2025-07-13

Last date published

2026-06-11

Category

Administrator Guide

Abstract

View the latest compliance assessment results in the Assessment page.

The Assessment page shows the latest compliance assessment profile results. It provides an up to date high level compliance view.

The display shows the following information:

Display element	Description
Assessment by Score widget	Shows how many assessment profiles were in each percentage of compliance range, color coded as follows: Red: 0-50% Orange: 51-99% Green: 100%
Assessment by Label widget	Shows how many of each label were assessed, for example, AWS or Azure.
Table showing assessment profiles grouped by compliance standard	Displays assessment profiles grouped by standards, including: Standard name: The standard used in the assessment profile. Asset Group: The asset group the assessment profile assessed. Score: The score assigned to the asset group. It is calculated as the number of assets that passed divided by the sum of assets that passed plus failed (the total number of assets that were evaluated). Control status: How many assets in an asset group passed the rule check (green), how many were not evaluated (grey), and how many failed (red). Failed controls by severity: Of the assets that failed the rule check, what was the severity of the failure for each asset; critical (dark red), high (red), medium (orange), low (blue), and informational (grey). Labels: The labels that were evaluated for the asset group in the assessment profile, for example, AWS or Azure. Last evaluation time: The last time the rule was run.

See specific assessment profile results

You can right click a specific assessment profile and select View Profile Report, which opens the report generated by the assessment profile. The report contains two tabs, Controls and Assets. You can also access this page by hovering over the end of the row and selecting the view arrow.

The Controls tab shows:

Display element	Description
Compliance Score widget	Displays the overall compliance score for the assessment profile and when it was last checked.
Controls by Status widget	A pie chart indicating which controls passed, failed, or were not assessed for a specific asset group. If a control is not assessed, it will not cause the asset group to fail the rule check. The status is color-coded (green=passed, red=failed, grey=not assessed).
Controls by Severity widget	A pie chart indicating severity level for controls for an asset group. Possible values: Critical High Medium Low Informational
Table showing controls and their rules grouped by category	Displays rules grouped by controls and categories, including: Name: The control name. Score: The rule score. For control, shows the average of the rule scores. For category, shows the average of the control scores. Status: Whether the control/rule passed or failed. The definition of pass varies by rule. See Cortex documentation for details. Severity: The control/rule severity rating (Critical, High, Medium, Low, Informational). Assets: The asset status. Each number links to the Asset tab, filtered by control/rule with the status. Issues: Links to the Issues table in a new tab, filtered for relevant issues.

View control details

Clicking the row for a specific control opens the Control Details side panel that shows information about the control in the Overview tab and the Rules tab.

Tab	Details
Overview	The Overview tab shows the following control metadata. General Details: Includes the standards, category, sub category, created at, and automation status associated with the control. Description: The control description. Standard Mitigation Action: A predefined measure or step to address and reduce risk related to the control. Assessment Results: Includes the asset group, linked issues, and linked findings.
Rules	The Rules tab shows the following information about the rules in the control. Note If there are no rules associated with the control, the control will be assigned a severity of low. Rule name Rule ID Type Severity: The overall severity of the control is determined by the rule with highest severity.

Tab

Details

Overview

The Overview tab shows the following control metadata.

General Details: Includes the standards, category, sub category, created at, and automation status associated with the control.
Description: The control description.
Standard Mitigation Action: A predefined measure or step to address and reduce risk related to the control.
Assessment Results: Includes the asset group, linked issues, and linked findings.

Rules

The Rules tab shows the following information about the rules in the control.

Note

If there are no rules associated with the control, the control will be assigned a severity of low.

Rule name
Rule ID
Type
Severity: The overall severity of the control is determined by the rule with highest severity.

View rule details

Clicking the row for a specific rule opens the Rule Details side panel.

This panel shows information about the rule, including:

General Details: Rule name, rule ID, type, and severity, and scanned asset categories.
Description: The rule description.
Remediation steps: Actions from the standards provider or from custom controls to correct or resolve asset non-compliance identified during the assessment.
Assessment Results: Includes the asset group, linked issues, and linked findings.

The Assets tab shows:

Display element	Description
Compliance Score widget	Displays the overall compliance score for the asset group and when it was last checked. It represents the aggregated status per asset. Assets with one failure are considered failed.
Distinct Assets by Status widget	A pie chart indicating which assets in an asset group passed for all rules, failed one or more rules, or were not assessed.
Table listing all the assets in the asset group	The distinct checks run for every asset covered by the assessment profile. Every row in the table represents a rule per asset for this standard. Asset name: The name of the asset. Asset type: For example, storage bucket, endpoint, VM instance, human identity. Status: Whether the asset passed or failed the rule. Source: Whether the source is an issue and/or finding. Rule: The rule that ran on the asset. Control: The control that contains the rule.

Clicking the row for a specific asset opens a side panel showing asset details organized under the following tabs:

Overview
SBOM
Access
Vulnerabilities

Right clicking on a row includes the following options:

View in Asset Inventory: Opens the Inventory → Assets → All Assets page showing asset details.
View Control Side Panel: Opens the Control Details side panel.
View Rule Side Panel: Opens the Rule Details side panel.