Cloud Configuration Governance dashboard

  • Release version: Yokohama
  • Updated January 30, 2025
  • 3 minutes to read
    • Summarize
    Summarized using AI
    This content was generated using new OpenAI-powered functionality. Results are provided on an as is basis and are not guaranteed to be accurate or complete.

    Summary of Cloud Configuration Governance dashboard

    The Cloud Configuration Governance dashboard in ServiceNow Yokohama release enables organizations to manage and monitor their cloud resource configurations against internal and security standards. It provides a comprehensive view of cloud health scores, policy violation statistics and trends, and remediation activities, helping you maintain compliance and security across cloud environments.

    Show full answer Show less

    Key Features

    • Access Control: Requires specific ServiceNow AI Platform roles (snitomccg.ccgoperator or snitomccg.reportviewer) to view the dashboard and its widgets.
    • Dashboard Navigation: Access via Cloud Configuration Governance > Dashboard.
    • Visualization Components: Includes a variety of charts and embedded lists such as:
      • Cloud health score (Speedo chart) showing the percentage of compliant cloud resources.
      • Violating resources (Stacked bar chart) detailing severity by resource type.
      • Violations count (Donut chart) segmented by audit issue severity.
      • Scanned resources (Donut chart) broken down by cloud resource type.
      • Issues (Horizontal bar chart) representing violations per definition with a maximum of 10 categories.
      • Policy compliance and policy set compliance (embedded lists) showing counts of compliant and non-compliant resources.
      • Remediation insights through half donut charts and pie charts illustrating total remediations, remediations by type, and remediation time.
      • Trend analysis (Line chart) of policy violations over time.
    • Filtering: Use the CCG Drilldown filter to select cloud provider, account, and region to focus the data on specific environments.
    • Use Cases: Designed to assist operators and report viewers in reviewing cloud health, analyzing violation trends, and tracking remediation efforts efficiently.

    Practical Benefits

    • Quickly assess the overall security posture and compliance status of your cloud resources.
    • Identify and prioritize remediation based on violation severity and resource type.
    • Gain insights into trends and patterns of cloud policy violations over time to improve governance.
    • Filter and drill down to specific cloud environments to tailor monitoring and reporting.

    By leveraging this dashboard, ServiceNow customers can maintain better control and visibility over their cloud configurations, ensuring adherence to organizational and security policies and enabling timely remediation of issues.

    Cloud Configuration Governance is a tool used to manage the configuration of the cloud resources as per your organizational standards and established security standards. Use the dashboard to review the health score of the cloud, policy violation statistics, policy violation trend, remediations overview, and more.

    Figure 1. Cloud Configuration Governance dashboard

    Cloud Configuration Governance dashboard.

    Required ServiceNow AI Platform roles

    sn_itom_ccg.ccg_operator or sn_itom_ccg.report_viewer roles are required to view the dashboard and its widgets.

    Access the Cloud Configuration Governance dashboard

    To open the dashboard, navigate to Cloud Configuration Governance > Dashboard.

    Use cases

    For examples of how different people in your organization would use this dashboard, see these use cases.
    User Dashboard use
    sn_itom_ccg.ccg_operator or sn_itom_ccg.report_viewer
    • Review the cloud heath score.
    • Time taken to remediate the identified policy violations.
    • Understand the trend of the policy violation.

    Reports

    Title Type Source table Description
    Cloud health score Speedo chart sn_itom_ccg_scan_summary Percentage of scanned cloud resources that doesn’t have any audit issue.
    Violating resources Stacked bar chart sn_itom_ccg_scan_summary Severity of the detected audit issues per cloud resource type.
    Violations count Donut chart

    sn_itom_ccg_violation_stats

    		 Violation per severity of the audit issue.
    Scanned resources Donut chart sn_itom_ccg_scan_summary Number of cloud resources scanned per cloud resource type.

    Use the CCG Drilldown Filters to filter the data and visualize the data of interest.
    Issues Horizontal bar chart sn_itom_ccg_audit_stats Number of violations reported per violation definition.

    The chart can display a maximum of 10 bars, that is one per violation definition type. If the data contains more than 10 violation definition types, all the additional violation definition types are merged under the Others bar.

    Use the CCG Drilldown Filters to filter the data and visualize the data of interest.
    Policy compliance Embedded lists

    sn_itom_ccg_policy_compliance_stats

    		 Displays the following information for the given policy:
    • Count of compliant resources
    • Count of non-compliant resources
    Policy set compliance Embedded lists

    sn_itom_ccg_policy_set_compliance_stats

    		 Displays the following information for the given policy set:
    • Count of compliant resources
    • Count of non-compliant resources
    Total issues remediated Half donut chart sn_itom_ccg_remediation_daily_trend Remediations performed per violation definition type.
    Remediations by type Pie chart sn_itom_ccg_remediation_daily_trend Remediations performed per cloud resource type.
    Remediated on Half donut chart sn_itom_ccg_remediation_daily_trend Time taken to remediate the violations.
    Trend Line chart sn_itom_ccg_daily_trend Trend of reporting violations over time.

    Filters

    Name Type Description
    CCG Drilldown filter Choice-based filter Use this filter to select the cloud provider, cloud account, and regions for visualizing their scanned resources and issues data.