Security Operations
Threat monitoring, vulnerability management and compliance posture
Posture Score
78/100
3% vs last month
Critical CVEs
2
1% vs last week
Open Incidents
4
3% vs last week
Compliance
84%
2% improvement
Security Posture
Overall security health score
78/100
Low risk
Med risk
High risk
Incidents by Severity
Last 30 days
Vulnerability Management
| CVE ID | CVSS | Severity | Affected Asset | Description | Status |
|---|---|---|---|---|---|
| CVE-2024-21351 | 9.8 | Critical | api-prod-vm-01 | Remote code execution via unpatched OpenSSL | Mitigating |
| CVE-2024-30103 | 9.1 | Critical | sql-cockpit-dev | SQL Server privilege escalation | Open |
| CVE-2024-38080 | 7.8 | High | aks-node-pool | Windows Hyper-V elevation of privilege | Open |
| CVE-2024-29988 | 7.5 | High | web-app-service | SmartScreen bypass vulnerability | Mitigating |
| CVE-2024-26234 | 6.7 | Medium | entra-connect | Proxy driver spoofing vulnerability | Resolved |
| CVE-2024-21338 | 6.3 | Medium | worker-ingestion | Windows kernel elevation of privilege | Accepted |
| CVE-2024-20656 | 5.1 | Low | storage-account | VSS privilege escalation | Resolved |
Compliance Checks
CIS Azure Benchmark v2.087%
Passed: 87Partial: 8Failed: 5
NIST CSF 2.072%
Passed: 72Partial: 17Failed: 11
ISO 27001:202294%
Passed: 94Partial: 4Failed: 2
SOC 2 Type II81%
Passed: 81Partial: 12Failed: 7