Policies included with the Security Posture Control application

  • Release version: Australia
  • Updated March 12, 2026
  • 2 minutes to read
    • Summarize
    Summarized using AI
    This content was generated using new OpenAI-powered functionality. Results are provided on an as is basis and are not guaranteed to be accurate or complete.

    Summary of Policies included with the Security Posture Control application

    The Security Posture Control (SPC) application provides several default policies that are essential for monitoring security posture and identifying configuration gaps. These policies are available in the SPC Workspace and help generate key insights displayed on the dashboard.

    Show full answer Show less

    Key Features

    • Policy Activation: The included policies are deactivated by default and need to be activated to view findings.
    • Cloning Policies: Users can clone the default policies to create custom ones, although these clones will not appear as key insights on the dashboard.
    • Custom Insights: After creating and activating custom policies, users must create a custom insight record to view data on the Custom insights dashboard.
    • Policy Categories: The default policies cover areas such as monitoring endpoint protection, identifying unmanaged devices, and assessing toxic combinations of security controls.

    Key Outcomes

    By utilizing the policies included with the SPC application, customers can effectively monitor their security controls, identify configuration gaps across various tools, and enhance their overall security posture. Custom policies can be tailored to specific internal requirements, providing flexibility in security management.

    There are a few policies that are included with the Security Posture Control application that are tied to important use cases and are ultimately shown as key insights on the dashboard on the landing page (Home module) in the SPC Workspace.

    Viewing policies

    To view these policies, navigate to Workspaces > Security Posture Control > Policies and findings > All.

    These policies are deactivated by default. You must activate them before you can view returned results (Findings). You cannot edit these policies, but you can use them to help you create other policies by cloning their conditions as a starting point. See Clone a policy or create a child policy in Security Posture Control for more information.

    You can clone these policies to create your own custom policies but note that any policies you clone are not reflected as key insights on the dashboard on the Home landing page with the key insights that are included with the application. However, you can configure findings for these cloned policies and see the returned results from these policies.

    You can configure custom insights or reports for the cloned policies, or, alternatively configure findings for these cloned policies to manage remediation. You can also create your own custom policies from scratch to monitor security controls coverage as per your internal requirements.

    The policies shipped with the application include the following categories:
    • Policies that monitor security controls coverage (endpoint protection and vulnerability scanner).
    • Policies that identify unmanaged devices.
    • Policies that monitor toxic combinations that involve critical combinations such as missing security controls, internet exposure, and so on.
    • Policies for SPC API Integrations for Mitigation Controls Monitoring.

    After you clone and activate any policies you create, you must create your own custom insight record on the Custom insight builder module in the workspace (the last module in the navigator panel). Only then can you view the data from your policies on the Custom insights dashboard (the second icon from the top in the workspace).

    Policies and asset profiles included with the application

    Get insights into your overall security posture and configuration gaps in your security tools using the policies and asset profiles that are included with the application. Activate these asset profiles and policies in the Security Posture Control workspace so that you can identify gaps in configuration or coverage of the following tools:

    • CrowdStrike
    • Microsoft Intune, Defender, and SCCM
    • HCL Big Fix
    • Qualys
    • Rapid7

    Creating your own policies

    See Creating your own policies in the Security Posture Control application for more information about how to create your own policies.

    For example policies, see Examples of base, child, and cloned policies for Security Posture Control.

    See Create and activate custom policies for Security Posture Control for more information about the steps required to create a policy.

    See Mitigation controls policies for more information for more information about policies used for mitigation controls monitoring.