MCMMCMBy Revdau
Enterprise User Guide
v1.1 is unreleased — see v1.0 for the current stable release.

Governance

8.1 Overview

Governance enables policy-driven compliance enforcement with aggregated workflows across all connected accounts.

Governance Dashboard Metrics
Cloud Compliance Overview — Compliant vs non-compliant policies by provider
Risk Heat Map — Non-compliant resources by severity level
Compliance by Category — Average compliance score across policy categories
Compliance by Group — Compliance score for each policy group
Risk Matrix — Non-compliant resource count by severity level

8.2 Policy Groups

System-created policy groups available on the platform:

  • GDPR Pack — Prebuilt GDPR controls

  • HIPAA Pack — Healthcare compliance controls

  • SOC2 Pack — SOC2 compliance controls

  • NIST

  • ISO

  • CIS Benchmark

Policy Groups tab attributes: Group Name, Description, Policies, Compliance, Status, Created By. Export available as CSV, Excel, or PDF.

8.3 Policies

Individual governance policies by type:

  • Cloud Policies — Powered by Cloud Custodian

  • Host Policies — Powered by Shell Scripts

Policy Lifecycle

StageAction
1Create Policy
2Configure Schedule
3Execute Policy
4Review Results
5Remediate Findings

Create a Policy Group

Step 1 Go to Policy Groups and click + Create Group.

Step 2 Enter Group Name.

Step 3 Enter Description (Optional).

Step 4 Toggle Policy Status: Active or Inactive.

Step 5 Click Next, review details, then click Create Group.

Create a Policy

Step 1 General — Choose policy type, name, and assign a group.

Step 2 Definition — Write the policy YAML or host shell script.

Step 3 Review — Configure schedule and review before saving.

8.4 Settings

Governance module settings are account-specific. You can enable or disable the module for a selected account to pause policy checks.

On this page