Skip to main content

Reports Overview

Lacework provides you with the ability to drill-down into details about non-compliant resources that are in violation. To populate the data viewed on the Reports page, you must configure at least one cloud integration with AWS, Azure, or Google Cloud.

reports.png

By default, the Reports page displays all available reports. You can use the following methods to refine the list of reports displayed:

  • Use filters to display a subset of specific reports. Click the filter groups along the top of the page to display the list of filters associated with the selected filter group, then select the filters that you want to apply.

  • Use the search function at the top of the page to find a subset of specific reports.

  • Use the time filter to display a subset of specific reports based on when they were generated.

When the page displays your desired reports, click Save or Create view in the top right corner. This allows you to access the saved view later. You can also copy the link to a saved view by opening the list of saved views and clicking the Share view icon of the view you want to share. You can then send that link to others so they can see the same view. For more details about saved views, refer to Views Management.

Report retention

Lacework retains generated reports for 90 days. For historical and regulatory compliance purposes, you should download and archive reports to meet extended retention periods.

Reports List

The reports list is below the filters. The list includes the following information:

  • Report configuration - The collection of Lacework-defined reports.
  • Cloud provider - The cloud provider of the assessed accounts such as AWS, Google Cloud or Azure.
  • Account - The cloud account that Lacework assessed and reported.
  • Report time - The evaluation time of the report.

The list allows you to refresh data and select the visible columns.

note

Report evaluations run daily at 12AM.

Available Reports

Lacework includes the built-in reports listed below.

tip

You can supplement the Lacework-defined reports with your own custom reports. For information on creating custom reports, see Custom Compliance Policies.

AWS Lacework-Defined Reports

Report NameAPI FormatNotes
AWS CIS 1.4.0 BenchmarkAWS_CIS_14
AWS Cloud Security Alliance Cloud Control Matrix (CSA CCM) v4.0.5AWS_CSA_CCM_4_0_5Comprised of CIS 1.4.0 policies
AWS Cyber Essentials 2.2 ReportAWS_Cyber_Essentials_2_2Comprised of CIS 1.4.0 policies
AWS ISO/IEC 27002:2022AWS_CIS_1_4_ISO_IEC_27002_2022Comprised of CIS 1.4.0 policies
AWS Cybersecurity Maturity Model Certification (CMMC) v1.02AWS_CMMC_1.02Comprised of CIS 1.4.0 policies
AWS HIPAA ReportAWS_HIPAAComprised of CIS 1.4.0 policies
AWS ISO 27001:2013 ReportAWS_ISO_27001:2013Comprised of CIS 1.4.0 policies
AWS NIST 800-171 rev2 ReportAWS_NIST_800-171_rev2Comprised of CIS 1.4.0 policies
AWS NIST 800-53 rev5 ReportAWS_NIST_800-53_rev5Comprised of CIS 1.4.0 policies
AWS NIST CSFAWS_NIST_CSFComprised of CIS 1.4.0 policies
AWS PCI DSS 3.2.1 ReportAWS_PCI_DSS_3.2.1Comprised of CIS 1.4.0 policies
AWS SOC 2 ReportAWS_SOC_2Comprised of CIS 1.4.0 policies
AWS PCI DSS 4.0.0 ReportAWS_PCI_DSS_4.0.0Comprised of CIS 1.4.0 policies
Lacework AWS Security Addendum 1.0LW_AWS_SEC_ADD_1_0

Azure Lacework-Defined Reports

Report NameAPI FormatNotes
CIS Azure Benchmark 1.5.0AZURE_CIS_1_5
Azure HIPAA ReportAZURE_HIPAA_CIS_1_5Comprised of CIS 1.5.0 policies
Azure ISO 27001:2013 ReportAZURE_ISO_27001:2013_CIS_1_5Comprised of CIS 1.5.0 policies
Azure NIST 800-171 rev2 ReportAZURE_NIST_800-171_rev2_CIS_1_5Comprised of CIS 1.5.0 policies
Azure NIST 800-53 rev5 ReportAZURE_NIST_800-53_rev5_CIS_1_5Comprised of CIS 1.5.0 policies
Azure NIST CSF ReportAZURE_NIST_CSF_CIS_1_5Comprised of CIS 1.5.0 policies
Azure PCI DSS 3.2.1 ReportAZURE_PCI_DSS_3_2_1_CIS_1_5Comprised of CIS 1.5.0 policies
Azure SOC 2 ReportAZURE_SOC_2_CIS_1_5Comprised of CIS 1.5.0 policies
Azure PCI DSS 4.0.0 ReportAZURE_PCI_DSS_4_0_0_CIS_1_5Comprised of CIS 1.5.0 policies
Azure Cloud Security Alliance Cloud Control Matrix (CSA CCM) v4.0.5AZURE_CSA_CCM_4_0_5Comprised of CIS 1.5.0 policies

Google Cloud Lacework-Defined Reports

Report NameAPI FormatNotes
CIS Google Cloud Benchmark 1.3.0GCP_CIS13
GCP Cybersecurity Maturity Model Certification (CMMC) v1.02GCP_CMMC_1_02Comprised of CIS 1.3.0 policies
GCP HIPAA (2013) ReportGCP_HIPAA_2013Comprised of CIS 1.3.0 policies
GCP ISO 27001:2013 ReportGCP_ISO_27001_2013Comprised of CIS 1.3.0 policies
GCP NIST 800-171 rev2 ReportGCP_CIS_1_3_0_NIST_800_171_rev2Comprised of CIS 1.3.0 policies
GCP NIST 800-53 rev5 ReportGCP_CIS_1_3_0_NIST_800_53_rev5Comprised of CIS 1.3.0 policies
GCP NIST CSF ReportGCP_CIS_1_3_0_NIST_CSFComprised of CIS 1.3.0 policies
GCP PCI DSS 3.2.1 ReportGCP_PCI_DSS_3_2_1Comprised of CIS 1.3.0 policies
GCP SOC 2 ReportGCP_SOC_2Comprised of CIS 1.3.0 policies
GCP PCI DSS 4.0.0 ReportGCP_PCI_DSS_4_0_0Comprised of CIS 1.3.0 policies
GCP Cloud Security Alliance Cloud Control Matrix (CSA CCM) v4.0.5GCP_CSA_CCM_4_0_5Comprised of CIS 1.3.0 policies