arrow-left Back to Announcements
DATE:
AUTHOR:
The folks at Scrut
New Feature

Introducing Application Tests: Automated Compliance Testing for Your Organization

DATE:
AUTHOR: The folks at Scrut

We are excited to announce the release of our new module: Application Tests. This module provides access to automated tests performed against various applications used in your organization, helping you take another step closer to achieving compliance.

What are Application Tests?

In the context of Scrut, an "Application Test" refers to a specific rule or assessment conducted on the applications used by your organization to determine their compliance with predefined security standards and best practices. Tests are designed to scan your 3rd party integrations and identify potential security risks, vulnerabilities, and instances of non-compliance.

Supported Applications

Currently, Application Tests support the following applications:

  • Cloudflare

  • Datadog

More application support is on the roadmap, and we will be continuously expanding the number of supported applications and tests per application to satisfy maximum controls.

How Tests Work

Once you integrate Scrut with supported applications, Application Tests will automatically create tests for that particular application. Scrut runs a daily scan of your resources based on a set of predefined rules and criteria, which are established to align with industry standards, regulatory requirements, and best practices. The goal of each test is to analyze your vendor configuration and settings to ensure they adhere to these rules.

Using Application Tests

  1. Navigate to the "Application Test" section on the left-side panel.

  1. The Application Test list will automatically display tests based on your integrated applications. If this section is empty, please integrate Scrut with the applications used across your organization.

  2. Filter tests based on the application.

  3. Each test will have one of 4 statuses:

    • Danger: One or more test entities are failing

    • Warning: The test is experiencing some issue

    • Compliant: The test is passed and is fully compliant

    • Ignored: The test has been ignored and is out of scope

Test Detail Page

The Test Detail Page provides a comprehensive view of individual test findings, empowering you with the necessary insights and tools to assess, address, and manage an individual test.

  • Concerns: Highlights the potential risks or issues associated with a specific test finding and their significance in terms of security, compliance, and overall risk management.

  • Entities: Displays all entities belonging to the specific application, allowing admins to remediate each resource individually or ignore them as needed.

  • Remediation: Provides step-by-step guidance on how to remediate the identified risks.

  • Assigned To: Allows you to assign a finding to a specific user for remediation.

  • Add Comments: Enables you to add comments, ensuring visibility and action from the assignee or anyone accessing the platform.

  • Actions: Facilitates the creation of stories or issues on project management platforms like Jira or Clickup, ensuring that issues are tracked and addressed.

Limitations and Known Issues

  • Application Tests currently support a limited scope, but we are continually expanding its scope.

  • Users cannot customize or add their own tests at this time. All tests are predefined by Scrut.

We are excited to bring you this new module and look forward to your feedback as we continue to enhance Application Tests to help you achieve compliance more effectively.

If you have any questions or issues, please reach out to your assigned Customer Success Manager. They'll be happy to assist you!

To view all the product updates, please click here.

Powered by LaunchNotes