Compliance Family Mapping
With compliance family mapping, you can map individual, custom compliance checks directly to the compliance program they are related to. You can also reuse individual compliance checks across multiple programs by mapping them, allowing you to single source checks and data.
Once a check is mapped to a program, any findings for that check will be related back to the mapped program control. This makes it easy to filter your findings by program, and see what needs to be addressed to reach compliance with the program.
For more information about compliance programs and our jumpstart resources, see Compliance Programs.
Mapping a Check to a Program
- Navigate to Compliance > All Compliance Checks.
- Click the ellipsis menu next to the check, and select Edit check.
- To map the check to a new program, click Add Compliance Program.
- To edit which controls within a program the check is mapped to, click on the program name to expand it.
- To unmap the check from a program, click Remove Program.
- Click Update Compliance Check.
If the check is part of a Kion provided jumpstart, its out-of-the-box mappings cannot be removed. You can, however, add mappings to it.
Viewing Compliance Program Resources
If a resource (CloudFormation template, IAM policy, compliance check, etc.) is part of a compliance jumpstart or program, it will have a tag in its respective list view.
To view all resources related to a specific program:
- Navigate to Compliance > Compliance Programs.
- Click View Program Details.
- Select the Resources tab.
To view all resources related to a specific control:
- Navigate to Compliance > Compliance Programs.
- Click View Program Details.
- Select the ellipsis menu next to a control, and click View Mapped Resources.
Viewing Findings by Program
To view all of your compliance findings that are related to a specific compliance program, navigate to Compliance > Overview and click the Non-Compliant Checks card.
This view defaults to show checks that have active, non-compliant findings. Use the filter on the left to select the compliance program that you want to see findings for. Results include checks that are mapped to the program and checks with the name of the compliance program in their name.
For suggestions on remediation approaches, see Non-Compliant Checks