Reports Overview
Lacework provides you with the ability to drill-down into details about non-compliant resources that are in violation. To populate the data viewed on the Reports page, you must configure at least one cloud integration with AWS, Azure, or Google Cloud.
By default, the Reports page displays all available reports. You can use the following methods to refine the list of reports displayed:
Use filters to display a subset of specific reports. Click the filter groups along the top of the page to display the list of filters associated with the selected filter group, then select the filters that you want to apply.
Use the search function at the top of the page to find a subset of specific reports.
Use the time filter to display a subset of specific reports based on when they were generated.
When the page displays your desired reports, click Save or Create view in the top right corner. This allows you to access the saved view later. You can also copy the link to a saved view by opening the list of saved views and clicking the Share view icon of the view you want to share. You can then send that link to others so they can see the same view. For more details about saved views, refer to Views Management.
Lacework retains generated reports for 90 days. For historical and regulatory compliance purposes, you should download and archive reports to meet extended retention periods.
Reports List
The reports list is below the filters. The list includes the following information:
- Report configuration - The collection of Lacework-defined reports.
- Cloud provider - The cloud provider of the assessed accounts such as AWS, Google Cloud or Azure.
- Account - The cloud account that Lacework assessed and reported.
- Report time - The evaluation time of the report.
The list allows you to refresh data and select the visible columns.
Report evaluations run daily at 12AM.
Available Reports
Lacework includes the built-in reports listed below.
You can supplement the Lacework-defined reports with your own custom reports. For information on creating custom reports, see Custom Compliance Policies.
AWS Lacework-Defined Reports
| Report Name | API Format | Notes |
|---|---|---|
| AWS CIS 1.4.0 Benchmark | AWS_CIS_14 | |
| AWS Cloud Security Alliance Cloud Control Matrix (CSA CCM) v4.0.5 | AWS_CSA_CCM_4_0_5 | Comprised of CIS 1.4.0 policies |
| AWS Cyber Essentials 2.2 Report | AWS_Cyber_Essentials_2_2 | Comprised of CIS 1.4.0 policies |
| AWS ISO/IEC 27002:2022 | AWS_CIS_1_4_ISO_IEC_27002_2022 | Comprised of CIS 1.4.0 policies |
| AWS Cybersecurity Maturity Model Certification (CMMC) v1.02 | AWS_CMMC_1.02 | Comprised of CIS 1.4.0 policies |
| AWS HIPAA Report | AWS_HIPAA | Comprised of CIS 1.4.0 policies |
| AWS ISO 27001:2013 Report | AWS_ISO_27001:2013 | Comprised of CIS 1.4.0 policies |
| AWS NIST 800-171 rev2 Report | AWS_NIST_800-171_rev2 | Comprised of CIS 1.4.0 policies |
| AWS NIST 800-53 rev5 Report | AWS_NIST_800-53_rev5 | Comprised of CIS 1.4.0 policies |
| AWS NIST CSF | AWS_NIST_CSF | Comprised of CIS 1.4.0 policies |
| AWS PCI DSS 3.2.1 Report | AWS_PCI_DSS_3.2.1 | Comprised of CIS 1.4.0 policies |
| AWS SOC 2 Report | AWS_SOC_2 | Comprised of CIS 1.4.0 policies |
| AWS PCI DSS 4.0.0 Report | AWS_PCI_DSS_4.0.0 | Comprised of CIS 1.4.0 policies |
| Lacework AWS Security Addendum 1.0 | LW_AWS_SEC_ADD_1_0 |
Azure Lacework-Defined Reports
| Report Name | API Format | Notes |
|---|---|---|
| CIS Azure Benchmark 1.5.0 | AZURE_CIS_1_5 | |
| Azure HIPAA Report | AZURE_HIPAA_CIS_1_5 | Comprised of CIS 1.5.0 policies |
| Azure ISO 27001:2013 Report | AZURE_ISO_27001:2013_CIS_1_5 | Comprised of CIS 1.5.0 policies |
| Azure NIST 800-171 rev2 Report | AZURE_NIST_800-171_rev2_CIS_1_5 | Comprised of CIS 1.5.0 policies |
| Azure NIST 800-53 rev5 Report | AZURE_NIST_800-53_rev5_CIS_1_5 | Comprised of CIS 1.5.0 policies |
| Azure NIST CSF Report | AZURE_NIST_CSF_CIS_1_5 | Comprised of CIS 1.5.0 policies |
| Azure PCI DSS 3.2.1 Report | AZURE_PCI_DSS_3_2_1_CIS_1_5 | Comprised of CIS 1.5.0 policies |
| Azure SOC 2 Report | AZURE_SOC_2_CIS_1_5 | Comprised of CIS 1.5.0 policies |
| Azure PCI DSS 4.0.0 Report | AZURE_PCI_DSS_4_0_0_CIS_1_5 | Comprised of CIS 1.5.0 policies |
| Azure Cloud Security Alliance Cloud Control Matrix (CSA CCM) v4.0.5 | AZURE_CSA_CCM_4_0_5 | Comprised of CIS 1.5.0 policies |
Google Cloud Lacework-Defined Reports
| Report Name | API Format | Notes |
|---|---|---|
| CIS Google Cloud Benchmark 1.3.0 | GCP_CIS13 | |
| GCP Cybersecurity Maturity Model Certification (CMMC) v1.02 | GCP_CMMC_1_02 | Comprised of CIS 1.3.0 policies |
| GCP HIPAA (2013) Report | GCP_HIPAA_2013 | Comprised of CIS 1.3.0 policies |
| GCP ISO 27001:2013 Report | GCP_ISO_27001_2013 | Comprised of CIS 1.3.0 policies |
| GCP NIST 800-171 rev2 Report | GCP_CIS_1_3_0_NIST_800_171_rev2 | Comprised of CIS 1.3.0 policies |
| GCP NIST 800-53 rev5 Report | GCP_CIS_1_3_0_NIST_800_53_rev5 | Comprised of CIS 1.3.0 policies |
| GCP NIST CSF Report | GCP_CIS_1_3_0_NIST_CSF | Comprised of CIS 1.3.0 policies |
| GCP PCI DSS 3.2.1 Report | GCP_PCI_DSS_3_2_1 | Comprised of CIS 1.3.0 policies |
| GCP SOC 2 Report | GCP_SOC_2 | Comprised of CIS 1.3.0 policies |
| GCP PCI DSS 4.0.0 Report | GCP_PCI_DSS_4_0_0 | Comprised of CIS 1.3.0 policies |
| GCP Cloud Security Alliance Cloud Control Matrix (CSA CCM) v4.0.5 | GCP_CSA_CCM_4_0_5 | Comprised of CIS 1.3.0 policies |