Google has a cunning plan to address false positive security alerts

Cloud Security
(Image credit: laymanzoom / Shutterstock)
Audio player loading…

An overload of security alerts (opens in new tab) can make it difficult for IT and security teams to find pressing threats which is why Google Cloud (opens in new tab) is adding a new “Mute Findings” capability to its Security Command Center (SCC).

SCC is the search giant's security and risk management platform that is used by organizations to manage and improve their cloud security (opens in new tab) and risk posture. The platform provides visibility into cloud assets to help businesses discover misconfigurations and vulnerabilities, detect threats and to maintain compliance with industry standards and benchmarks.

According to a new blog post (opens in new tab) from Google Cloud, SCC is constantly evolving with new capabilities to help make security operations and management processes more efficient. To this end, the company has added a new Mute Findings capability in SCC that helps organizations effectively manage findings based on their policies and requirements.

While SCC presents potential security risks in an organization's cloud environment (opens in new tab) as 'findings' inclusive of misconfigurations, vulnerabilities and threats, a high volume of findings can make it difficult for security teams to identify, triage and remediate the most critical risks to their business.

Mute Findings

With the launch of Google Cloud's new Mute Findings capability, organizations gain a way to reduce the volume of findings and focus on the security issues that are highly relevant.

This new capability can also help save organizations time as they no longer have to review or respond to findings that are identified as acceptable risks within their environment. For instance, alerts for assets that are isolated or fall within acceptable business parameters may not need a security team's immediate attention or might not even need to be remediated at all.

However, once findings are muted, they will still continue to be logged for audit and compliance purposes. Organizations also have the ability to review muted findings at any time even though they are hidden by default in the SCC dashboard.

Google Cloud's Mute Findings functionality is now available in SCC through the Google Cloud Platform console, gcloudtool and API and the company has also provided documentation (opens in new tab) for organizations interested in leveraging this new capability.

Looking to improve your security posture? Check out the best antivirus software (opens in new tab), best firewall (opens in new tab) and best patch management tools (opens in new tab)

After working with the TechRadar Pro team for the last several years, Anthony is now the security and networking editor at Tom’s Guide where he covers everything from data breaches and ransomware gangs to the best way to cover your whole home or business with Wi-Fi. When not writing, you can find him tinkering with PCs and game consoles, managing cables and upgrading his smart home.