Cyber Insurance Hub has integrated with Security Command CenterPremium and Enterprise tiersto
simplify the remediation process for CIS Benchmark findings. If you're a
Security Command CenterStandard tiercustomer, you can't use Security Command Center to inspect and remediate all
individual CIS Benchmark findings on your Google Cloud resources. Upgrade
to Premium tier or Enterprise tier to get full support. SeeActivation overviewfor more detailed information about how to activate each Security Command Center tier.
Remediating CIS Benchmark findings with Security Command Center Premium or Enterprise tier
To inspect and remediate individual findings using Security Command Center,
follow these steps:
In a report, in the table of CIS benchmark topics, expand a CIS Benchmark
topic to view the CIS Benchmarks for that topic.
In a CIS Benchmark table row, click the finding count.
This links to Security Command Center to display the active findings related
to that CIS Benchmark.
In Security Command Center, in the table of findings, click the category of the
finding that you want to remediate.
A pane opens with information on how to remediate that finding.
Remediating CIS Benchmarks with Security Command Center Standard tier
While Cyber Insurance Hub reports provide a table of the CIS Benchmark topics
identified across your organization, Security Command Center Standard tier doesn't let you
pivot directly to the related findings in Security Command Center.
To view instructions on how to remediate general CIS Benchmarks, follow these
steps:
In a report, in the table of CIS benchmark topics, expand a CIS Benchmark
topic to view the CIS Benchmarks for that topic.
In a CIS Benchmark table row, click the CIS Benchmark description.
This links to the general remediation instructions for that CIS Benchmark.
You can also use the following instructions to remediate findings for
CIS Benchmarks supported by Cyber Insurance Hub:
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-09-04 UTC."],[],[],null,["# Remediating findings\n\n| **Preview**\n|\n|\n| This product is subject to the \"Pre-GA Offerings Terms\" in the General Service Terms section\n| of the [Service Specific Terms](/terms/service-terms#1).\n|\n| Pre-GA products are available \"as is\" and might have limited support.\n|\n| For more information, see the\n| [launch stage descriptions](/products#product-launch-stages).\n\nThis document describes how to remediate findings in reports.\n\nA report combines aggregate findings from\n[Security Command Center](/security-command-center)\nand inventory data from [Cloud Asset Inventory](/asset-inventory) to give an\naggregate view of risk across your organization. These reports are aligned with\nthe [CIS Google Cloud Computing Foundations Benchmark v1.2.0](https://www.cisecurity.org/insights/blog/cis-benchmarks-may-2021-update).\nFor more information on this framework, see\n[CIS Benchmarks](/security-command-center/docs/concepts-vulnerabilities-findings#cis-benchmarks).\n\nAs a best practice, start by remediating the findings that have the\nhighest impact, as indicated in a Cyber Insurance Hub report.\n\nBefore you begin\n----------------\n\n[Create a report](/risk-manager/docs/managing-reports#create).\n\nRemediating CIS Benchmark findings\n----------------------------------\n\nCyber Insurance Hub has integrated with Security Command Center\n[Premium and Enterprise tiers](/security-command-center/pricing#tier-pricing) to\nsimplify the remediation process for CIS Benchmark findings. If you're a\nSecurity Command Center [Standard tier](/security-command-center/pricing#tier-pricing)\ncustomer, you can't use Security Command Center to inspect and remediate all\nindividual CIS Benchmark findings on your Google Cloud resources. Upgrade\nto Premium tier or Enterprise tier to get full support. See [Activation overview](/security-command-center/activate-scc-overview)\nfor more detailed information about how to activate each Security Command Center tier.\n\n### Remediating CIS Benchmark findings with Security Command Center Premium or Enterprise tier\n\nTo inspect and remediate individual findings using Security Command Center,\nfollow these steps:\n\n1. In a report, in the table of CIS benchmark topics, expand a CIS Benchmark\n topic to view the CIS Benchmarks for that topic.\n\n2. In a CIS Benchmark table row, click the finding count.\n\n This links to Security Command Center to display the active findings related\n to that CIS Benchmark.\n3. In Security Command Center, in the table of findings, click the category of the\n finding that you want to remediate.\n\n A pane opens with information on how to remediate that finding.\n\n### Remediating CIS Benchmarks with Security Command Center Standard tier\n\nWhile Cyber Insurance Hub reports provide a table of the CIS Benchmark topics\nidentified across your organization, Security Command Center Standard tier doesn't let you\npivot directly to the related findings in Security Command Center.\n\nTo view instructions on how to remediate general CIS Benchmarks, follow these\nsteps:\n\n1. In a report, in the table of CIS benchmark topics, expand a CIS Benchmark\n topic to view the CIS Benchmarks for that topic.\n\n2. In a CIS Benchmark table row, click the CIS Benchmark description.\n\n This links to the general remediation instructions for that CIS Benchmark.\n\nYou can also use the following instructions to remediate findings for\nCIS Benchmarks supported by Cyber Insurance Hub:\n\n\u003cbr /\u003e\n\n\u003cbr /\u003e\n\nWhat's next?\n------------\n\n- Learn how to [approve a report](/risk-manager/docs/managing-reports#approve).\n- Learn how to [share a report with insurance partners](/risk-manager/docs/managing-reports#send)."]]
