Key insights and configured insights for Security Posture Control

  • Release version: Australia
  • Updated March 12, 2026
  • 2 minutes to read
    • Summarize
    Summarized using AI
    This content was generated using new OpenAI-powered functionality. Results are provided on an as is basis and are not guaranteed to be accurate or complete.

    Summary of Key Insights and Configured Insights for Security Posture Control

    Key and configured insights in Security Posture Control deliver visual reports based on assessment criteria tied to your assets. These insights enhance your ability to monitor security control metrics effectively through a dashboard, enabling informed decision-making regarding security posture.

    Show full answer Show less

    Key Features

    • Key Insights: Derived from policies included with the application, these insights display critical information such as endpoint protection status, managed device coverage, vulnerability scan coverage, critical vulnerabilities, and a breakdown of vulnerable items by severity.
    • Configured Insights: Users can create custom insights using existing or custom policies for more tailored information. Configured insights can include comparison charts, policy match counts, and trend charts to visualize data effectively.
    • Group Organization: Insights can be organized into groups, allowing you to manage up to 21 widgets per group on the Configured Insights dashboard.

    Key Outcomes

    By leveraging key and configured insights, customers can gain a comprehensive view of their security posture, identify vulnerabilities, and track compliance with policies. This functionality ensures that organizations can proactively manage their security controls and respond to threats effectively, ultimately enhancing overall security management.

    Key and configured (custom) insights provide you with visual reports that are created and updated by the assessment criteria that match your assets. Insights help you monitor security controls metrics on a dashboard.

    Key insights

    The criteria used for the assessments of your assets are provided by the policies that are included with the application.
    • Key insights use the policies that are included with the application.
    • Configured insights can be created using the policies included with the application, your own custom policies, or a combination of both.
    On the Home (landing page) in the Security Posture Control workspace, the Key insights section below the Overview displays visual reports that are created and updated by the policies that are included with the application. These insights are also included with the application and display the following information:
    • Endpoint protection agent installed: Total number of assets that have or do not have endpoint protection.
    • Managed device coverage: Number of managed assets compared to those that are unmanaged.
    • Vulnerability scan coverage: Total number of scanned assets compared to the those that are not scanned for known vulnerabilities by a third-party vulnerability scanner.
    • Assets with critical vulnerabilities: Number of assets out of the total number of assets that have critical vulnerabilities.
    • Vulnerable items by criticality: Total number of vulnerable items broken down by their severity. A known vulnerability that matches an asset in your CMDB results in a vulnerable item. This insight requires you to install the Vulnerability Response application and at least one scanner integration: Qualys, Rapid7, or the Tenable Vulnerability Integration. All these applications are available on the ServiceNow® Store.
    • Top 3 policies by findings: Policies that return the most findings (matches) on your assets.

    Configured insights

    You can create your own insights if you want more information not found in the Key insights. You can create these configured insights and use existing policies or your own custom policies for assessment. Your configured insights are displayed on the Configured insights dashboard module, the second icon from the top in the workspace.

    Following types of insights can be configured.

    • Comparison chart: Compare results between multiple policies with bar charts.
    • Policy match count widget: View the number of devices that match a policy.
    • Policy match percentage chart: View the percentage of devices that match a policy in a pie chart. You can choose the total asset pool as either all the assets monitored by SPC or the assets that match the base policy from which the current selected policy is created.
    • Policy trend chart: View the trends of assets that match various policies.

    See Create and activate a configured insight for Security Posture Control for more information about the steps for creating a configured insight.

    Groups

    You must create or assign groups to your configured insights when you create new records in the Custom insight builder module. Groups allow you to organize your reports on the Configured insights dashboard.

    Insights can be organized into groups. Each group can have 21 widgets or insights.