CSPM & Findings

Cloud Security Posture Management is the core of RedCloud. The platform runs 968+ automated security checks (776+ GCP and 192+ web) across IAM, networking, storage, GKE, compute, and Workspace, then presents the results as prioritized, actionable findings.

In this section

• Overview — how the CSPM engine works and what it inspects.
• Running a Scan — launch a scan, choose a profile (mvp15, full, iam, networking, storage, gke, compute, cis, audit), and scope it to projects, folders, or an organization.
• Findings & Severity — read finding cards, filter by severity, and switch between Red / Blue / All perspectives.
• Remediation Tracker & Roadmap — track remediation tickets and follow the AI-generated remediation roadmap.
• Assessment Coverage — IAM analytics coverage and permission distribution.

The finding lifecycle

1. Collect — the engine gathers configuration and IAM data from the cloud provider.
2. Check — each resource is evaluated against the relevant security checks.
3. Score — findings receive a severity (Critical / High / Medium / Low) and a risk score.
4. Prioritize — findings are ranked and grouped, and a remediation roadmap is produced.
5. Track — remediation progress is followed to closure in the Remediation Tracker.

Note

Severity reflects the inherent seriousness of a misconfiguration; the risk score weighs severity against exposure, reachability, and blast radius for your environment.