Lucidum has been acquired by Cyderes → [Read the announcement]

Lucidum has been acquired by Cyderes → [Read the announcement]

View Categories

Cloud Dashboards

Estimated Reading Time: 50 min read

The pre-built Value-Oriented Dashboards include the following cloud dashboards:

  • AWS All-in-One. This dashboard displays information about the AWS resources in your environment, including EC2 instances, S3 buckets, and security groups.

  • Azure All-In-One. This dashboard displays information about the Azure instances (VMs, blob containers, and security groups) in your environment..

  • Cloud Compute Summary. This dashboard displays information about all cloud compute instances from all providers.

  • Cloud Tagging Enforcement. Tagging is the process of using a consistent, descriptive naming strategy for cloud instances. This dashboard displays instances that are not properly tagged and provides statistics about the tags in use.

  • Multi-Cloud Consolidated Compute. This dashboard displays information about the compute resources in all the clouds in your environment. Compute resources are those resources that include CPU and memory and usually run software.

  • Multi-Cloud Idle Instance Spend. This dashboard displays information about idle cloud instances and the cost of those idle cloud instances.

  • Multi-Cloud Individual Compute. This dashboard displays information about the compute resources in each cloud in your environment. Compute resources are those resources that include CPU and memory and usually run software.

  • Multi-Cloud Public Cloud Object Stores. This dashboard includes information about all storage resources in all the clouds in your environment.

Required Connectors #

To find all the assets in your environment, including all the cloud assets in your environment, Lucidum recommends you configure Lucidum connectors for:

  • The Endpoint Management solutions in your environment (for example, Jamf, Intune, Citrix Endpoint Management, Symantec Endpoint Management, Hexnode)

  • The Endpoint Protection solutions in your environment (for example, Trellix Endpoint Security, Symantec Endpoint Protection, SentinelOne, Crowdstrike Falcon, Microsoft Defender for Endpoint )

  • The Endpoint Detection and Response solutions in your environment (for example, SentinelOne, Falcon Crowdstrike, Trend Micro XDR, Check Point Harmony Endpoint, Cortex XDR)

  • The cloud security solutions in your environment for cloud assets (for example, Netskope, Illumio Core, Orca, Tenable Vulnerability Management, Trend Micro Cloud One, Sophos Central)

  • The Mobile Device Management solutions in your environment (for example, Addigy, Citrix Endpoint, Jamf Pro, Kandji)

  • The directory solutions in your environment (For example, Azure AD, Microsoft AD, Jump Cloud, PingOne, OpenLDAP,)

  • The DHCP solutions in your environment (For example, Infoblox, Efficient IP, BlueCat)

  • The VPN solutions in your environment (For example, Cisco AnyConnect, FortiClient, Palo Alto VPN, Citrix Gateway, Zscaler Private Access)

  • The cloud solutions in your environment (for example, AWS, Azure, Google Cloud, Oracle Cloud)

Syntax #

When you see :: in a query, this means that the query includes a nested list (table) member. For example:

Tag::Key

looks like this in the Query Builder:

vod_example_query.png

See Using Queries with Nested Lists for details on nested lists.

AWS All-In-One #

The AWS All-In-One dashboard displays information about the AWS instances (EC2, S3, and security groups) in your environment.

The AWS All-In-One dashboard looks like this:

vods_cloud_aws-all-in-one_24.0.png

Base Query #

Most of the charts in this dashboard use the following as a base query:

Data Sources match AWS Elastic Compute Cloud

or

Data Sources match AWS Simple Storage Service

or

Data Sources match AWS Security Group

The queries look for assets where data was collected from the AWS service:

  • AWS Elastic Compute Cloud Service, meaning that the assets is an EC2 instance

  • AWS Simple Storage Service, meaning that the assets is an S3 bucket.

  • AWS Security Group, meaning the that data is an AWS security group.

If you want to create a dashboard for a different type of AWS instance or AWS data, you can use the Data Sources field and supply a different AWS service.

Charts #

  • Total EC2 Instances. Displays the total count of EC2 instances in your environment.

    • This chart uses the query Data Sources match AWS Elastic Compute Cloud to find all the EC2 instances in your environment.

    • From the data returned by the query, the Category field specifies the value to show in the chart. In this case, the chart displays a count of Lucidum Asset Name returned by the query.

    • The Chart Type is “Big Number”.

  • EC2 Instances by Connector Profile. Specifies which profile in the AWS Connector page found each EC2 instance.

    • This chart uses the query Data Sources match AWS Elastic Compute Cloud to find all the EC2 instances in your environment.

    • From the data returned by the query, the Category field specifies the values to show on the x-axis. In this case, the x-axis displays a count of Lucidum Asset Name returned by the query.

    • From the data returned by the query, the Series field specifies the values to show on the y-axis. In this case, the y-axis displays the Connector Profile.

    • The Chart Type is “Bar”.

  • Top-n Critical CVEs Reported. Displays the CVEs that occur most frequently in the EC2 instances in your environment.

    • This chart uses the query Data Sources match AWS Elastic Compute Cloud AND Critical CVE List exists to find all the EC2 instances in your environment that have critical CVEs.

    • From the data returned by the query, the Category field specifies the values to show on the x-axis. In this case, the x-axis displays a count of Lucidum Asset Name returned by the query.

    • From the data returned by the query, the Series field specifies the values to show on the y-axis. In this case, the y-axis displays the value of a CVE from the field CVE List.

    • The Chart Type is “Bar”.

  • Projected Monthly Cost. Specifies the total monthly cost for all EC2 instances.

    • This chart uses the query Data Sources match AWS Elastic Compute Cloud to find all the EC2 instances in your environment.

    • From the data returned by the query, the Category field specifies the value to show in the chart. In this case, the chart displays a sum of all values for Monthly Cost (US Dollar).

    • The Chart Type is “Big Number”.

  • Idle Instance Projected Monthly Cost. Specifies the total monthly cost for all idle EC2 instances.

    • This chart uses the query Data Sources match AWS Elastic Compute Cloud AND Idle Instance (yes/no) == yes to find all the EC2 instances in your environment that are idle.

    • From the data returned by the query, the Category field specifies the value to show in the chart. In this case, the chart displays a sum of all values for Monthly Cost (US Dollar).

    • The Chart Type is “Big Number”.

  • Total S3 Buckets. Total count of S3 instances in your environment.

    • This chart uses the query Data Sources match AWS Simple Storage Service to find all S3 instances in your environment.

    • From the data returned by the query, the Category field specifies the value to show in the chart. In this case, the chart displays a count of Lucidum Asset Name returned by the query.

    • The Chart Type is “Big Number”.

  • S3 Encryption Status. Displays the encryption status of all S3 instances in your environment.

    • This chart uses the query Data Sources match AWS Simple Storage Service to find all S3 instances in your environment.

    • From the data returned by the query, the Category field specifies the values to use to calculate the entire pie. In this case, the entire pie is all instances of Lucidum Asset Name returned by the query.

    • From the data returned by the query, the Series field specifies the value to show in each slice of the pie. In this case, each slice displays Encrypted (yes/no).

    • The Chart Type is “Pie”.

  • S3 Environments. Displays the environment tag for each S3 instance in your environment.

    • This chart uses the query Data Sources match AWS Simple Storage Service AND Tag::Key match environment to find all S3 instances in your environment that use the “environment” tag.

    • From the data returned by the query, the Category field specifies the values to show on the x-axis. In this case, the x-axis displays a count of Lucidum Asset Name returned by the query.

    • From the data returned by the query, the Series field specifies the values to show on the y-axis. In this case, the y-axis displays the Tag:Value, so displays the “environment” value for each S3 bucket.

    • The Chart Type is “Bar”.

  • Security Group Environments. Displays the environment tag for each AWS Security Group in your environment.

    • This chart uses the query Data Sources match AWS Security Group AND Tag::Key match environment to find all Security Groups in your environment that use the “environment” tag.

    • From the data returned by the query, the Category field specifies the values to show on the x-axis. In this case, the x-axis displays a count of Lucidum Asset Name returned by the query.

    • From the data returned by the query, the Series field specifies the values to show on the y-axis. In this case, the y-axis displays the Tag:Value, so displays the “environment” value for each security group.

    • The Chart Type is “Bar”.

  • Total Security Groups. Total count of AWS Security Groups in your environment.

    • This chart uses the query Data Sources match AWS Security Group to find all AWS Security Groups in your environment.

    • From the data returned by the query, the Category field specifies the value to show in the chart. In this case, the chart displays a count of Lucidum Asset Name returned by the query.

    • The Chart Type is “Big Number”.

  • Security Group Detail. Displays name, IP range, and rules for IP ranges and ports, and rules types for each AWS Security Group.

    • This chart uses the query Data Sources match AWS Security Group AND Security Group Name not match terraform to find all AWS Security Groups in your environment that are not the “terraform” security group.

    • From the data returned by the query, the Category fields specifies the columns in the table. In this case, Security Group Name, Security Group IP Range, Security Group Rules::IP Ranges, Security Group Rules::To Port, and Security Group Rules::Rule Type.

    • The Chart Type is “Table”.

  • S3 Service Alignments. Displays the service tag for each S3 instance in your environment.

    • This chart uses the query Data Sources match AWS Simple Storage Service AND Tag::Key == service or Tag::Key == Service to find all S3 instances in your environment that use the “service” tag.

    • From the data returned by the query, the Category field specifies the values to show on the x-axis. In this case, the x-axis displays a count of Lucidum Asset Name returned by the query.

    • From the data returned by the query, the Series field specifies the values to show on the y-axis. In this case, the y-axis displays the Tag:Value, so displays the “service” value for each S3 bucket.

    • The Chart Type is “Bar”.

Azure All-In-One #

The Azure All-In-One dashboard displays information about the Azure instances (VMs, blob containers, and security groups) in your environment.

The Azure All-In-One dashboard looks like this:

vods_cloud_azure_all-in-one_24.0.png

Base Queries #

  • Charts for VM use the following as a base query:

Data Sources match Azure Virtual Machines OR Data Sources Match Azure Scale

The queries look for assets where data was collected from the Azure service:

    • Azure Virtual Machines Service, meaning that the assets is an Azure VM instance

    • Azure Scale Set Service, meaning that the assets is a load-balanced Azure VM instance.

  • Charts for Blob Containers use the following as a base query:

Data Sources match Azure Blob Storage

  • Charts for Azure Security Groups use the following as a base query:

Data Sources match Azure Network Security Group

If you want to create a dashboard for a different type of Azure instance or Azure data, you can use the Data Sources field and supply a different Azure service.

Charts #

  • Total VM Instance. Displays the total count of Azure VMs in your environment.

    • This chart uses the query Data Sources match Azure Virtual Machines OR Data Sources Match Azure Scale to find all the Azure VMs in your environment.

    • From the data returned by the query, the Category field specifies the value to show in the chart. In this case, the chart displays a count of Lucidum Asset Name returned by the query.

    • The Chart Type is “Big Number”.

  • Azure VMs by Connector Profile. Specifies which profile in the Azure Connector page found each Azure VM.

    • This chart uses the query Data Sources match Azure Virtual Machines OR Data Sources Match Azure Scale to find all the Azure VMs in your environment.

    • From the data returned by the query, the Category field specifies the values to show on the x-axis. In this case, the x-axis displays a count of Lucidum Asset Name returned by the query.

    • From the data returned by the query, the Series field specifies the values to show on the y-axis. In this case, the y-axis displays the Azure Virtual Machines Connector Profile.

    • The Chart Type is “Bar”.

  • Top-n Critical CVEs Reported. Displays the CVEs that occur most frequently in the Azure VMs in your environment.

    • This chart uses the query Data Sources match Azure Virtual Machines OR Data Sources Match Azure Scale AND Critical CVE List exists to find all the Azure VMs in your environment that have critical CVEs.

    • From the data returned by the query, the Category field specifies the values to show on the x-axis. In this case, the x-axis displays a count of Lucidum Asset Name returned by the query.

    • From the data returned by the query, the Series field specifies the values to show on the y-axis. In this case, the y-axis displays the Critical CVE List.

    • The Chart Type is “Bar”.

  • Projected Monthly Cost. Specifies the total monthly cost for all Azure VMs.

    • This chart uses the query Data Sources match Azure Virtual Machines OR Data Sources Match Azure Scale to find all the Azure VMs in your environment.

    • From the data returned by the query, the Category field specifies the value to show in the chart. In this case, the chart displays a sum of all values for Monthly Cost (US Dollar).

    • The Chart Type is “Big Number”.

  • Idle Instance Projected Monthly Cost. Specifies the total monthly cost for all idle Azure VMs.

    • This chart uses the query Data Sources match Azure Virtual Machines OR Data Sources Match Azure Scale AND Idle Instance (yes/no) == yes to find all the Azure VMs in your environment that are idle.

    • From the data returned by the query, the Category field specifies the value to show in the chart. In this case, the chart displays a sum of all values for Monthly Cost (US Dollar).

    • The Chart Type is “Big Number”.

  • Total Blob Containers. Total count of Azure Blob Containers in your environment.

    • This chart uses the query Data Sources match Azure Blob Storage to find all Azure Blob Containers in your environment.

    • From the data returned by the query, the Category field specifies the value to show in the chart. In this case, the chart displays a count of Lucidum Asset Name returned by the query.

    • The Chart Type is “Big Number”.

  • Blob Container Encryption Status. Displays the encryption status of all Azure Blobs in your environment.

    • This chart uses the query Data Sources match Azure Blob Storage to find all Azure Blob Containers in your environment.

    • From the data returned by the query, the Category field specifies the value to show in the chart. In this case, the chart displays a count of Lucidum Asset Name returned by the query.

    • From the data returned by the query, the Series field specifies the value to show in each slice of the pie. In this case, each slice displays Encrypted (True/Fasle).

    • The Chart Type is “Pie”.

  • Blob Container Environments. Displays the environment tag for each Azure Blob in your environment.

    • This chart uses the query Data Sources match Azure Blob Storage AND Tag::Key match environment to find all Azure Blob Containers in your environment that use the “environment” tag.

    • From the data returned by the query, the Category field specifies the values to show on the x-axis. In this case, the x-axis displays a count of Lucidum Asset Name returned by the query.

    • From the data returned by the query, the Series field specifies the values to show on the y-axis. In this case, the y-axis displays the Tag:Value, so displays the “environment” value for each Azure Blob Container.

    • The Chart Type is “Bar”.

  • Security Group Environments. Displays the environment tag for each Azure Security Group in your environment.

    • This chart uses the query Data Sources match Azure Network Security Group AND Tag::Key match environment to find all Azure Security Groups in your environment that have an environment tag.

    • From the data returned by the query, the Category field specifies the values to show on the x-axis. In this case, the x-axis displays a count of Lucidum Asset Name returned by the query.

    • From the data returned by the query, the Series field specifies the values to show on the y-axis. In this case, the y-axis displays the Tag:Value, so displays the “environment” value for each security group.

    • The Chart Type is “Bar”.

  • Total Security Groups. Total count of Azure Security Groups in your environment.

    • This chart uses the query Data Sources match Azure Network Security Group to find all Azure Security Groups in your environment.

    • From the data returned by the query, the Category field specifies the value to show in the chart. In this case, the chart displays a count of Lucidum Asset Name returned by the query.

    • The Chart Type is “Big Number”.

  • Security Group Detail. Displays name, IP range, and rules for IP ranges and ports, and rules types for each Azure Security Group.

    • This chart uses the query Data Sources match Azure Network Security Group AND Security Group Name not match terraform to find all Azure Security Groups in your environment except those for Terraform (an IaC tool).

    • From the data returned by the query, the Category fields specifies the columns in the table. In this case, Security Group Name, Security Group IP Range, Security Group Rules::IP Ranges, Security Group Rules::To Port, and Security Group Rules::Rule Type.

    • The Chart Type is “Table”.

  • SG Service Alignments. Displays the service tag for each Azure Security Group.

    • This chart uses the query Data Sources match Azure Network Security Group AND Tag::Key == service or Tag::Key == Service to find all Azure Security Groups in your environment that use the “service” tag.

    • From the data returned by the query, the Category field specifies the values to show on the x-axis. In this case, the x-axis displays a count of Lucidum Asset Name returned by the query.

    • From the data returned by the query, the Series field specifies the values to show on the y-axis. In this case, the y-axis displays the Tag:Value, so displays the “service” value for each Azure Security Group.

    • The Chart Type is “Bar”.

Cloud Compute Summary #

The Cloud Compute Summary dashboard displays information about all cloud compute instances from all providers.

The Cloud Compute Summary dashboard looks like this:

vods_cloud_cloud_compute_summary_24.0.png

Base Queries #

  • Charts for all cloud compute the following as a base query:

Data Sources match AWS Elastic Compute Cloud OR Data Sources match Azure Virtual Machine Scale Sets OR Data Sources match Azure Virtual Machines OR Data Sources match Oracle Cloud Virtual AND Last Time Seen within past 1 month

The queries look for cloud computer assets from AWS, Azure, and Oracle that have been active within the last month.

  • Charts for AWS cloud compute instances use the following as a base query:

Data Sources match AWS Elastic Compute Cloud AND Last Time Seen within past 1 month

  • Charts for Azure cloud compute instances use the following as a base query:

Data Sources match Azure Virtual Machine Scale Sets OR Data Sources match Azure Virtual Machines AND Last Time Seen within past 1 month

  • Charts for Oracle cloud compute instances use the following as a base query:

Data Sources match Oracle Cloud Virtual AND Last Time Seen within past 1 month

If you want to create a dashboard for a different types of cloud compute instances, you can use the Data Sources field and supply a different cloud services.

Charts #

  • Cloud Compute Instances: Total. Displays the total count of Cloud Compute instances your environment.

    • This chart uses the query Data Sources match AWS Elastic Compute Cloud OR Data Sources match Azure Virtual Machine Scale Sets OR Data Sources match Azure Virtual Machines OR Data Sources match Oracle Cloud Virtual AND Last Time Seen within past 1 month to find all the cloud compute instances in your environment.

    • From the data returned by the query, the Category field specifies the value to show in the chart. In this case, the chart displays a count of Lucidum Asset Name returned by the query.

    • The Chart Type is “Big Number”.

  • Cloud Compute Instance Status. Displays the statuses of cloud compute instances your environment.

    • This chart uses the query Data Sources match AWS Elastic Compute Cloud OR Data Sources match Azure Virtual Machine Scale Sets OR Data Sources match Azure Virtual Machines OR Data Sources match Oracle Cloud Virtual AND Last Time Seen within past 1 month to find all the cloud compute instances in your environment.

    • From the data returned by the query, the Category field represents the entire pie. In this case, the entire pie is represented by all instances of Lucidum Asset Name.

    • From the data returned by the query, the Series field specifies the values for the slices in the pie. In this case, each slice maps to a value of the field Status.

    • The Chart Type is “Pie”.

  • Cost Breakdown by Provider. Displays the cost for cloud compute instances by cloud provider,

    • This chart uses the query Data Sources match AWS Elastic Compute Cloud OR Data Sources match Azure Virtual Machine Scale Sets OR Data Sources match Azure Virtual Machines OR Data Sources match Oracle Cloud Virtual AND Last Time Seen within past 1 month to find all the cloud compute instances in your environment.

    • From the data returned by the query, the Category field specifies the entire pie. In this case, the entire pie is the sum of Monthly Cost (US Dollar).

    • From the data returned by the query, the Series field specifies the values for the slices in the pie. In this case, each slice maps to a value of the field Cloud Provider.

    • The Chart Type is “Pie”.

  • Cloud Compute Instances: AWS. Displays the total count of AWS cloud compute instances in your environment.

    • This chart uses the query Data Sources match AWS Elastic Compute Cloud AND Last Time Seen within past 1 month to find the AWS cloud compute instances in your environment.

    • From the data returned by the query, the Category field specifies the value to show in the chart. In this case, the chart displays a count of Lucidum Asset Name returned by the query.

    • The Chart Type is “Big Number”.

  • Cloud Compute Instance Types: AWS. Displays the types of AWS cloud compute instances in the environment.

    • This chart uses the query Data Sources match AWS Elastic Compute Cloud AND Last Time Seen within past 1 month to find the AWS cloud compute instances in your environment.

    • From the data returned by the query, the Category field represents the entire pie. In this case, the entire pie is represented by all instances of Lucidum Asset Name .

    • From the data returned by the query, the Series field specifies the values for the slices in the pie. In this case, each slice maps to a value of the field Instance Type.
    • The Chart Type is “Pie”.

  • Cloud Compute Cost: AWS. Displays the total cost of AWS cloud compute instances in your environment.

    • This chart uses the query Data Sources match AWS Elastic Compute Cloud AND Last Time Seen within past 1 month to find the AWS cloud compute instances in your environment.

    • From the data returned by the query, the Category field specifies the value to show in the chart. In this case, the chart displays a count of Lucidum Asset Name.

    • The Chart Type is “Big Number”.

  • Cloud Compute Cost by Instance Type: AWS. Displays total AWS cost by instance type.

    • This chart uses the query Data Sources match AWS Elastic Compute Cloud AND Last Time Seen within past 1 month to find all the AWS cloud compute instances in your environment.

    • From the data returned by the query, the Category field specifies the entire pie. In this case, the entire pie is the sum of all instances of Monthly Cost (US Dollar) returned by the query.

    • From the data returned by the query, the Series field specifies the values for the slices in the pie. In this case, each slice maps to a value of the field Instance Type.

    • The Chart Type is “Pie”.

  • Cloud Compute Instances: Azure. Displays the total cost of Azure VMs in your environment.

    • This chart uses the query Data Sources match Azure Virtual Machines OR Data Sources match Azure Virtual Machine Scale Sets AND Last Time Seen within past 1 month to find the Azure VMs in your environment.

    • From the data returned by the query, the Category field specifies the value to show in the chart. In this case, the chart displays a count of Lucidum Asset Name returned by the query.

    • The Chart Type is “Big Number”.

  • Cloud Compute Instance Types: Azure. Displays the types of Azure VMs in the environment.

    • This chart uses the query Data Sources match Azure Virtual Machines OR Data Sources match Azure Virtual Machine Scale Sets AND Last Time Seen within past 1 month to find the Azure VMs in your environment.

    • From the data returned by the query, the Category field represents the entire pie. In this case, the entire pie is represented by all instances of Lucidum Asset Name returned by the query.

    • From the data returned by the query, the Series field specifies the values for the slices in the pie. In this case, each slice maps to a value of the field Instance Type.
    • The Chart Type is “Pie”.

  • Cloud Compute Cost: Azure. Displays the total count of Azure VMs in your environment.

    • This chart uses the query Data Sources match Azure Virtual Machines OR Data Sources match Azure Virtual Machine Scale Sets AND Last Time Seen within past 1 month to find the Azure VMs in your environment.

    • From the data returned by the query, the Category field specifies the value to show in the chart. In this case, the chart displays a count of Lucidum Asset Name returned by the query.

    • The Chart Type is “Big Number”.

  • Cloud Compute Cost by Instance Type: Azure. Displays total Azure cost by instance type.

    • This chart uses the query Data Sources match Azure Virtual Machines OR Data Sources match Azure Virtual Machine Scale Sets AND Last Time Seen within past 1 month to find all the Azure VMs in your environment.

    • From the data returned by the query, the Category field specifies the entire pie. In this case, the entire pie is the sum of all instances of Monthly Cost (US Dollar) returned by the query.

    • From the data returned by the query, the Series field specifies the values for the slices in the pie. In this case, each slice maps to a value of the field Instance Type.

    • The Chart Type is “Pie”.

  • Cloud Compute Instances: Oracle. Displays the total count of Oracle cloud compute instances in your environment.

    • This chart uses the query Data Sources match Oracle Cloud Virtual Machines AND Last Time Seen within past 1 month to find the Oracle cloud compute instances in your environment.

    • From the data returned by the query, the Category field specifies the value to show in the chart. In this case, the chart displays a count of Lucidum Asset Name returned by the query.

    • The Chart Type is “Big Number”.

  • Cloud Compute Instance Types: Oracle. Displays the types of Oracle cloud compute instances in the environment.

    • This chart uses the query Data Sources match Oracle Cloud Virtual Machines AND Last Time Seen within past 1 month to find the Oracle cloud compute instances in your environment.

    • From the data returned by the query, the Category field represents the entire pie. In this case, the entire pie is represented by all instances of Lucidum Asset Name .

    • From the data returned by the query, the Series field specifies the values for the slices in the pie. In this case, each slice maps to a value of the field Instance Type.
    • The Chart Type is “Pie”.

  • Cloud Compute Cost: Oracle. Displays the total cost of Oracle cloud compute instances in your environment.

    • This chart uses the query Data Sources match Oracle Cloud Virtual Machines AND Last Time Seen within past 1 month to find the Oracle cloud compute instances in your environment.

    • From the data returned by the query, the Category field specifies the value to show in the chart. In this case, the chart displays a count of Lucidum Asset Name.

    • The Chart Type is “Big Number”.

  • Cost Breakdown by Instance Type: Oracle. Displays total Oracle cost by instance type.

    • This chart uses the query Data Sources match Oracle Cloud Virtual Machines AND Last Time Seen within past 1 month to find all the Oracle cloud compute instances in your environment.

    • From the data returned by the query, the Category field specifies the entire pie. In this case, the entire pie is the sum of all instances of Monthly Cost (US Dollar) returned by the query.

    • From the data returned by the query, the Series field specifies the values for the slices in the pie. In this case, each slice maps to a value of the field Instance Type.

    • The Chart Type is “Pie”.

Cloud Tagging Enforcement #

Tagging is the process of using a consistent, descriptive naming strategy for cloud instances. The Cloud Tagging Enforcement dashboard displays instances that are not properly tagged and provides statistics about the tags in use.

The Cloud Tagging Enforcement dashboard looks like this:

vods_cloud_cloud_tagging_enforcement_24.0.png

Base Query #

Most of these charts use the base query:

Lucidum_VOD_Cloud_Compute match Yes AND Tag::Key exists

Lucidum_VOD_Cloud_Compute is a Smart Label. Smart Labels are shortcuts for more complex queries. Lucidum_VOD_Cloud_Compute is a shortcut for this query:

Cloud Asset (yes/no) == Yes AND Asset Type == VM

This means that Lucidum_VOD_Cloud_Compute matches “yes” when an asset is a cloud asset and additionally, that asset is a cloud asset of type “VM”.

So the complete query is:

Cloud Asset (yes/no) == Yes AND Asset Type == VM AND Tag::Key exists

This means that matching assets are cloud assets, of type VM, and have a tag.

If you wanted to create a dashboard for a different type of cloud instance, you can supply a different asset type in the query. To view all Asset Types in your Lucidum system, in the Query Builder, select Asset Type. The value field includes a list of available Asset Types to choose from.

Charts #

  • Total Compute Instances. Displays a count of all compute instances across all clouds in your environment.

    • This chart uses the query Lucidum_VOD_Cloud_Compute match Yes

    • From the data returned by the query, the Category field specifies the value to show in the chart. In this case, the chart displays a count of Lucidum Asset Name.

    • The Chart Type is “Big Number.

  • Top-n Tags in Use for EC2 Instances. This chart displays the top nine types of tags in use for EC2 instances.

    • This chart uses the query Lucidum_VOD_Cloud_Compute match Yes AND Image Tag::Key exists. This query looks for cloud instances of type VM that were built with an image with a built-in tag.

    • From the data returned by the query, the Category field specifies the values to show on the x-axis. In this case, the x-axis displays a count of Lucidum Asset Name.

    • From the data returned by the query, the Series field specifies the values to show on the y-axis. In this case, the y-axis displays the name of the tag (Tag::Key).

    • The Chart Type is “Bar”.

  • Top-n Instance Owners for EC2 Instances. This chart displays the top five owners for EC2 instances.

    • This chart uses the query Lucidum_VOD_Cloud_Compute match Yes AND Tag::Key match Owner. This query looks for cloud instances of type VM that includes a Tag/Key pair for owner

    • From the data returned by the query, the Category field specifies the values to use to calculate the entire pie. In this case, the entire pie is the total count of Lucidum Asset Names.

    • From the data returned by the query, the Series field specifies the value to show in each slice of the pie. In this case, each slice displays the owner’s name(Tag::Value).

    • The Chart Type is “Pie”.

  • Completely Untagged Instance. This chart displays cloud assets with no tags.

    • This chart uses the query Lucidum_VOD_Cloud_Compute match Yes AND Tag not meet all: Key exists. This query looks for cloud instances of type VM that where no Tag/Key pairs exist.

    • From the data returned by the query, the Category fields specifies the columns in the table. In this case, the average count of existing tags (Tag::Key).

    • From the data returned by the query, the Series field specifies the row in the table. In this case, the table will have a row for each Lucidum Asset Name.

    • The Chart Type is “Table”.

  • EC2 Instances Missing Name Tags. This chart displays cloud assets without name tags.

    • This chart uses the query Lucidum_VOD_Cloud_Compute match Yes AND Tag::Key not match Name. This query looks for cloud instances of type VM that do not include a Tag/Key pair for name.

    • From the data returned by the query, the Category fields specifies the columns in the table. In this case, the average count of existing tags (Tag::Key).

    • From the data returned by the query, the Series field specifies the row in the table. In this case, the table will have a row for each Lucidum Asset Name.

    • The Chart Type is “Table”.

  • EC2 Instances Missing Owner Tags. This chart displays cloud assets without owner tags.

    • This chart uses the query Lucidum_VOD_Cloud_Compute match Yes AND Tag::Key not match Owner. This query looks for cloud instances of type VM that do not include a Tag/Key pair for name.

    • From the data returned by the query, the Category fields specifies the columns in the table. In this case, the average count of existing tags (Tag::Key).

    • From the data returned by the query, the Series field specifies the row in the table. In this case, the table will have a row for each Lucidum Asset Name.

    • The Chart Type is “Table”.

  • EC2 Instances Missing Status Tags. This chart displays cloud assets without status tags.

    • This chart uses the query Lucidum_VOD_Cloud_Compute match Yes AND Tag::Key not match Status. This query looks for cloud instances of type VM that do not include a Tag/Key pair for status.

    • From the data returned by the query, the Category fields specifies the columns in the table. In this case, the average count of existing tags (Tag::Key).

    • From the data returned by the query, the Series field specifies the row in the table. In this case, the table will have a row for each Lucidum Asset Name.

    • The Chart Type is “Table”.

  • EC2 Instances Missing Cost Center Tags. This chart displays cloud assets without cost center tags.

    • This chart uses the query Lucidum_VOD_Cloud_Compute match Yes AND Tag::Key not match cost-center. This query looks for cloud instances of type VM that do not include a Tag/Key pair for cost center.

    • From the data returned by the query, the Category fields specifies the columns in the table. In this case, the average count of existing tags (Tag::Key).

    • From the data returned by the query, the Series field specifies the row in the table. In this case, the table will have a row for each Lucidum Asset Name.

    • The Chart Type is “Table”.

Multi-Cloud Consolidated Compute #

The Multi-Cloud Consolidated Compute dashboard displays information about the compute resources in all the clouds in your environment. Compute resources are those resources that include CPU and memory and usually run software.

The Multi-Cloud Consolidated Compute dashboard looks like this:

vods_cloud_cloud_multicloud_consolidate_compute_24.0.png

Base Query #

Most of the charts in this dashboard use the following as a base query:

Lucidum_VOD_Cloud_Compute match Yes

Lucidum_VOD_Cloud_Compute is a Smart Label. Smart Labels are shortcuts for more complex queries. Lucidum_VOD_Cloud_Compute is a shortcut for this query:

Cloud Asset (yes/no) == Yes AND Asset Type == VM

This means that Lucidum_VOD_Cloud_Compute matches “yes” when an asset is a cloud asset and additionally, that asset is a cloud asset of type “VM”.

If you wanted to create a dashboard for a different type of cloud instance, you can supply a different asset type in the query. To view all Asset Types in your Lucidum system, in the Query Builder, select Asset Type. The value field includes a list of available Asset Types to choose from.

Charts #

  • Cloud Compute – All Sources. Displays a count of all compute instances across all clouds in your environment.

    • This chart uses the query Lucidum_VOD_Cloud_Compute match Yes

    • From the data returned by the query, the Category field specifies the value to show in the chart. In this case, the chart displays a count of Lucidum Asset Name.

    • The Chart Type is “Big Number”.

  • Instance Type Breakdown. This chart displays the size type of each cloud compute instance.

    • This chart uses the query Lucidum_VOD_Cloud_Compute match Yes

    • From the data returned by the query, the Category field specifies the values to show on the x-axis. In this case, the x-axis displays a count of Lucidum Asset Name.

    • From the data returned by the query, the Series field specifies the values to show on the y-axis. In this case, the y-axis displays the Instance Type.

    • The Chart Type is “Bar”.

  • All Cloud Assets – By Type. This chart displays all the types of cloud instances in your environment.

    • This chart uses the query Cloud Asset (yes/no) == yes

    • From the data returned by the query, the Category field specifies the values to use to calculate the entire pie. In this case, the entire pie is the total count of Lucidum Asset Name.

    • From the data returned by the query, the Series field specifies the value to show in each slice of the pie. In this case, each slice displays an Instance Type.

    • The Chart Type is “Pie”.

  • Cloud Compute Assets. This chart lists the name of the cloud compute instances.

    • This chart uses the query Lucidum_VOD_Cloud_Compute match Yes

    • From the data returned by the query, the Category fields specifies the columns in the table. In this case, Cloud Account, Instance Name, Instance Type, Critical CVE List, and Region.

    • The Chart Type is “Table”.

  • Compute Tags in Use. Tagging is the process of using a consistent, descriptive naming strategy for cloud instances. This chart displays all the tags used to tag compute instances.

    • This chart uses the query Tag::Key exists AND Lucidum_VOD_Cloud_Compute match Yes

    • From the data returned by the query, the Category field specifies the values to show on the x-axis. In this case, the x-axis displays a count of Lucidum Asset Names.

    • From the data returned by the query, the Series field specifies the values to show on the y-axis. In this case, the x-axis displays the name of the tag (Tag::Key).

    • The Chart Type is “Bar”.

  • Top-n Cloud Compute Assets by OS. This chart displays the operating systems running on your compute instances.

    • This chart uses the query Lucidum_VOD_Cloud_Compute match Yes

    • From the data returned by the query, the Category field specifies the values to show on the x-axis. In this case, the x-axis displays a count of Lucidum Asset Names.

    • From the data returned by the query, the Series field specifies the values to show on the y-axis. In this case, the y-axis displays the Lucidum OS Version.

    • The Chart Type is “Bar”.

  • Cloud Object Storage by Encryption Status. This chart displays the number of encrypted and unencrypted storage instances.

    • This chart uses the query Cloud Asset (yes/no) == yes AND Asset Type match STORAGE

    • From the data returned by the query, the Category field specifies the values to use to calculate the entire pie. In this case, the entire pie is the total count of Lucidum Asset Names.

    • From the data returned by the query, the Series field specifies the value to show in each slice of the pie. In this case, each slice displays Encrypted (yes/no).

    • The Chart Type is “Pie”.

Multi-Cloud Idle Instance Spend #

The Multi-Cloud Idle Instance Spend dashboard displays information about idle cloud instances and the cost of those idle cloud instances.

The Multi-Cloud Idle Instance Spend dashboard looks like this:

vods_cloud_cloud_multicloud_idle_instance_spend_24.0.png

Base Query #

Most of these charts use the base query:

Lucidum_VOD_Cloud_Computer match Yes AND Idle Instance (yes/no) == Yes

Lucidum_VOD_Cloud_Compute is a Smart Label. Smart Labels are shortcuts for more complex queries. Lucidum_VOD_Cloud_Compute is a shortcut for this query:

Cloud Asset (yes/no) == Yes AND Asset Type == VM

This means that Lucidum_VOD_Cloud_Compute matches “yes” when an asset is a cloud asset and additionally, that asset is a cloud asset of type “VM”.

So the complete query is:

Cloud Asset (yes/no) == Yes AND Asset Type == VM AND Idle Instance (yes/no) == Yes

This means that matching assets are cloud assets, of type VM, and are idle.

Idle instances are those with consistently very low CPU usage.

If you wanted to create a dashboard for a different type of cloud instance, you can supply a different asset type in the query. To view all Asset Types in your Lucidum system, in the Query Builder, select Asset Type. The value field includes a list of available Asset Types to choose from.

Charts #

  • Cloud Compute Instances. Displays a count of all compute instances across all clouds in your environment.

    • This chart uses the query Lucidum_VOD_Cloud_Compute match Yes

    • From the data returned by the query, the Category field specifies the value to show in the chart. In this case, the chart displays a count of Lucidum Asset Name.

    • The Chart Type is “Big Number”.

  • Idle Instances Total. Displays a count of all idle compute instances across all clouds in your environment.

    • This chart uses the query Lucidum_VOD_Cloud_Compute match Yes AND Idle Instance (yes/no) == Yes

    • From the data returned by the query, the Category field specifies the value to show in the chart. In this case, the chart displays a count of Lucidum Asset Name.

    • The Chart Type is “Big Number”.

  • Idle Instance %. This chart displays the percent of cloud compute instances that active and the percent of cloud compute instances that are idle.

    • This chart uses the query Lucidum_VOD_Cloud_Compute match Yes

    • From the data returned by the query, the Category field specifies the values to use to calculate the entire pie. In this case, the entire pie is the total count of Lucidum Asset Names.

    • From the data returned by the query, the Series field specifies the value to show in each slice of the pie. In this case, each slice displays Idle Instance (yes/no).

    • The Chart Type is “Pie”.

  • Tags on Idle Instances. Tagging is the process of using a consistent, descriptive naming strategy for cloud instances. This chart displays all cloud instances that are idle and that use tags.

    • This chart uses the query Lucidum_VOD_Cloud_Compute match Yes AND Idle Instance (yes/no) == Yes AND Tag::Key exists

    • From the data returned by the query, the Category field specifies the values to show on the x-axis. In this case, the x-axis displays a count of Lucidum Asset Names.

    • From the data returned by the query, the Series field specifies the values to show on the y-axis. In this case, the y-axis displays the tag name (Tag::Key).

    • The Chart Type is “Bar”.

  • Cloud Compute Estimated Monthly Cost. Lucidum can calculate the monthly cost of cloud instances. This chart displays the total cost of all cloud instances.

    • This chart uses the query Lucidum_VOD_Cloud_Compute match Yes

    • From the data returned by the query, the Category field specifies the value to show in the chart. In this case, the chart displays a sum of all values for Monthly Cost (US Dollar).

    • The Chart Type is “Big Number”.

  • Idle Instances Estimated Monthly Cost. Lucidum can calculate the monthly cost of cloud instances. This chart displays the total cost of idle cloud instances.

    • This chart uses the query Lucidum_VOD_Cloud_Compute match Yes AND Idle Instance (yes/no) == Yes

    • From the data returned by the query, the Category field specifies the value to show in the chart. In this case, the chart displays a sum of all values for Monthly Cost (US Dollar).

    • The Chart Type is “Big Number”.

  • Estimated Monthly Cost by Instance Type. Lucidum can calculate the monthly cost of cloud instances. This chart displays the total cost of cloud instances, by size type.

    • This chart uses the query Lucidum_VOD_Cloud_Compute match Yes AND Idle Instance (yes/no) == Yes

    • From the data returned by the query, the Category field specifies the values to show on the x-axis. In this case, the x-axis displays the sum of Monthly Cost (US Dollars).

    • From the data returned by the query, the Series field specifies the values to show on the y-axis. In this case, the y-axis displays the Instance Type.

    • The Chart Type is “Bar”.

  • Idle Instances by Instance Type. This chart displays all idle cloud instances in your environment by size type.

    • This chart uses the query Lucidum_VOD_Cloud_Compute match Yes AND Idle Instance (yes/no) == Yes

    • From the data returned by the query, the Category field specifies the values to show on the x-axis. In this case, the x-axis displays a count of Lucidum Asset Names.

    • From the data returned by the query, the Series field specifies the values to show on the y-axis. In this case, the y-axis displays the Instance Type.

    • The Chart Type is “Bar”.

  • Idle Instances by Department. This chart displays the departments that have idle instances.

    • This chart uses the query Lucidum_VOD_Cloud_Compute match Yes AND Idle Instance (yes/no) == Yes

    • From the data returned by the query, the Category field specifies the values to show on the x-axis. In this case, the x-axis displays a count of Lucidum Asset Names.

    • From the data returned by the query, the Series field specifies the values to show on the y-axis. In this case, the y-axis displays the Department.

    • The Chart Type is “Bar”.

  • Idle Instances by Region. This chart displays the regions that have idle instances.

    • This chart uses the query Lucidum_VOD_Cloud_Compute match Yes AND Idle Instance (yes/no) == Yes

    • From the data returned by the query, the Category field specifies the values to show on the x-axis. In this case, the x-axis displays a count of Lucidum Asset Names.

    • From the data returned by the query, the Series field specifies the values to show on the y-axis. In this case, the y-axis displays the Region.

    • The Chart Type is “Bar”.

Multi-Cloud Individual Compute #

The Multi-Cloud Individual Compute dashboard displays information about the compute resources in each cloud in your environment. Compute resources are those resources that include CPU and memory and usually run software.

The Multi-Cloud Individual Compute dashboard looks like this:

vods_cloud_cloud_multicloud_individual_computer_24.0.png

Base Query #

Most of the charts in this dashboard use something like the following as a base query:

Data Sources match azure_vms

This means that we are searching for assets whose data is stored in the database table “azure_vms”. When Lucidum ingests data from Azure, Lucidum automatically categorizes the ingested data and stores all the information about Azure VMs in the table “azure_vms”. If an instance appears in the database table “azure_vms”, it is an Azure VM.

If you wanted to create a dashboard for a different type of cloud instance, you can search for a different Data Source. To view all Data Sources in your Lucidum system, in the Query Builder, select Data Sources. The value field includes a list of available Data Sources to choose from.

Charts #

To view details about each chart, click the pencil icon.

  • Azure VMs. This chart displays a count of all Azure VMs in your environment.

    • This chart uses the query Data Sources match azure_vms

    • From the data returned by the query, the Category field specifies the value to show in the chart. In this case, the chart displays a count of Lucidum Asset Name.

    • The Chart Type is “Big Number”.

  • Azure VM Tags. Tagging is the process of using a consistent, descriptive naming strategy for cloud instances. This chart displays the tag values used for Azure VMs.

    • This chart uses the query Data Sources match azure_vms

    • From the data returned by the query, the Category field specifies the values to show on the x-axis. In this case, the x-axis displays a count of Lucidum Asset Names.

    • From the data returned by the query, the Series field specifies the values to show on the y-axis. In this case, the y-axis displays the name of the tag (Tag:Key).

    • The Chart Type is “Bar”.

  • Azure VMs by Location. This chart displays the locations with Azure VMs.

    • This chart uses the query Data Sources match azure_vms

    • From the data returned by the query, the Category field specifies the values to show on the x-axis. In this case, the x-axis displays a count of Lucidum Asset Names.

    • From the data returned by the query, the Series field specifies the values to show on the y-axis. In this case, the y-axis displays the Location.

    • The Chart Type is “Bar”.

  • Azure VMs by Instance Type. This chart displays Azure VMs by size type.

    • This chart uses the query Data Sources match azure_vms

    • From the data returned by the query, the Category field specifies the values to show on the x-axis. In this case, the x-axis displays a count of Lucidum Asset Names.

    • From the data returned by the query, the Series field specifies the values to show on the y-axis. In this case, the y-axis displays the Instance Type.

    • The Chart Type is “Bar”.

  • AWS VMs. This chart displays a count of all AWS VMs in your environment.

    • This chart uses the query Data Sources match aws__ec2 AND Asset Type is equal to VM

    • From the data returned by the query, the Category field specifies the value to show in the chart. In this case, the chart displays a count of Lucidum Asset Name.

    • The Chart Type is “Big Number”.

  • AWS VM Tags. Tagging is the process of using a consistent, descriptive naming strategy for cloud instances. This chart displays the tag values used for AWS VMs.

    • This chart uses the query Data Sources match aws__ec2 AND Asset Type is equal to VM

    • From the data returned by the query, the Category field specifies the values to show on the x-axis. In this case, the x-axis displays a count of Lucidum Asset Names.

    • From the data returned by the query, the Series field specifies the values to show on the y-axis. In this case, the y-axis displays the name of the tag (Tag:Key).

    • The Chart Type is “Bar”.

  • AWS VMs by Location. This chart displays locations with AWS VMs.

    • This chart uses the query Data Sources match aws__ec2 AND Asset Type is equal to VM

    • From the data returned by the query, the Category field specifies the values to show on the x-axis. In this case, the x-axis displays a count of Lucidum Asset Names.

    • From the data returned by the query, the Series field specifies the values to show on the y-axis. In this case, the y-axis displays the Location.

    • The Chart Type is “Bar”.

  • AWS VMs by Instance Type. This chart displays AWS VMs by size type.

    • This chart uses the query Data Sources match aws__ec2 AND Asset Type is equal to VM

    • From the data returned by the query, the Category field specifies the values to show on the x-axis. In this case, the x-axis displays a count of Lucidum Asset Names.

    • From the data returned by the query, the Series field specifies the values to show on the y-axis. In this case, the y-axis displays the Instance Type.

    • The Chart Type is “Bar”.

  • GCP VMs. This chart displays a count of all GCP VMs in your environment.

    • This chart uses the query Data Sources match gcp_inventory

    • From the data returned by the query, the Category field specifies the value to show in the chart. In this case, the chart displays a count of Lucidum Asset Name.

    • The Chart Type is “Big Number”.

  • GCP VM Tags. Tagging is the process of using a consistent, descriptive naming strategy for cloud instances. This chart displays the tag values used for GCP VMs.

    • This chart uses the query Data Sources match gcp_inventory

    • From the data returned by the query, the Category field specifies the values to show on the y-axis. In this case, the y-axis displays a count of Lucidum Asset Names.

    • From the data returned by the query, the Series field specifies the values to show on the x-axis. In this case, the x-axis displays the name of the tag (Tag:Key).

    • The Chart Type is “Bar”.

  • GCP VMs by Location. This chart displays locations that have GCP VMs.

    • This chart uses the query Data Sources match gcp_inventory

    • From the data returned by the query, the Category field specifies the values to show on the x-axis. In this case, the x-axis displays a count of Lucidum Asset Names.

    • From the data returned by the query, the Series field specifies the values to show on the y-axis. In this case, the y-axis displays the Location.

    • The Chart Type is “Bar”.

  • GCP VMs by Instance Type. This chart displays GCP VMs by size type

    • This chart uses the query Data Sources match gcp_inventory

    • From the data returned by the query, the Category field specifies the values to show on the x-axis. In this case, the x-axis displays a count of Lucidum Asset Names.

    • From the data returned by the query, the Series field specifies the values to show on the y-axis. In this case, the y-axis displays the Instance Type.

    • The Chart Type is “Bar”.

Multi-Cloud Public Cloud Object Stores #

The Multi-Cloud Public Cloud Object Stores dashboard displays information about all cloud storage resources, both public and private, in your environment.

The Multi-Cloud Public Cloud Object Stores dashboard looks like this:

vod_cloud_cloud_multicloud_public_cloud_object_stores_24.0.png

Base Query #

Most of the charts in this dashboard use the following as a base query:

Cloud Asset (yes/no) == Yes AND Asset Type == STORAGE

This query searches for assets that are cloud assets and additionally, that asset is a cloud asset of type “STORAGE”.

If you wanted to create a dashboard for a different type of cloud instance, you can supply a different asset type in the query. To view all Asset Types in your Lucidum system, in the Query Builder, select Asset Type. The value field includes a list of available Asset Types to choose from.

Charts #

  • Cloud Storage Total. This chart displays a count of all cloud storage instances in your environment.

    • This chart uses the query Cloud Asset (yes/no) == Yes AND Asset Type == STORAGE

    • From the data returned by the query, the Category field specifies the value to show in the chart. In this case, the chart displays a count of Lucidum Asset Name.

    • The Chart Type is “Big Number”.

  • Cloud Storage Assets. This chart displays the name of each storage asset (the Cloud Bucket) and its associated risk ranking.

    • This chart uses the query Cloud Asset (yes/no) == Yes AND Asset Type == STORAGE

    • From the data returned by the query, the Category fields specifies the columns in the table. In this case, the average value of Risk Ranking.

    • From the data returned by the query, the Series field specifies the row in the table. In this case, the table will have a row for each Cloud Bucket.

    • The Chart Type is “Table”.

  • Encrypted, Public-Facing Cloud Storage. This chart displays a count of all encrypted, public-facing cloud storage.

    • This chart uses the query Cloud Asset (yes/no) == Yes AND Asset Type == STORAGE AND Public Facing (yes/no) == Yes AND Encrypted (yes/no) == yes

    • From the data returned by the query, the Category field specifies the value to show in the chart. In this case, the chart displays a count of Lucidum Asset Name.

    • The Chart Type is “Big Number”.

  • Encrypted, Public-Facing Cloud Storage Assets. This chart displays the name of each encrypted, public-facing storage asset (the Cloud Bucket) and its associated risk ranking.

    • This chart uses the query Cloud Asset (yes/no) == Yes AND Asset Type == STORAGE AND Public Facing (yes/no) == Yes AND Encrypted (yes/no) == yes

    • From the data returned by the query, the Category fields specifies the columns in the table. In this case, the average value of Risk Ranking.

    • From the data returned by the query, the Series field specifies the row in the table. In this case, the table will have a row for each Cloud Bucket.

    • The Chart Type is “Table”.

  • Unencrypted, Public-Facing Cloud Storage. This chart displays a count of all unencrypted, public-facing cloud storage.

    • This chart uses the query Cloud Asset (yes/no) == Yes AND Asset Type == STORAGE AND Public Facing (yes/no) == Yes AND Encrypted (yes/no) == No

    • From the data returned by the query, the Category field specifies the value to show in the chart. In this case, the chart displays a count of Lucidum Asset Name.

    • The Chart Type is “Big Number”.

  • Unencrypted, Public-Facing Cloud Storage Assets. This chart displays the name of each unencrypted, public-facing storage asset (the Cloud Bucket) and its associated risk ranking.

    • This chart uses the query Cloud Asset (yes/no) == Yes AND Asset Type == STORAGE AND Public Facing (yes/no) == Yes AND Encrypted (yes/no) == No

    • The Summary further filters and organizes the query results (set of additional fields for each Lucidum Asset Name that matches the query) for display in the chart. This chart uses the additional filter average Risk Ranking by Cloud Bucket

    • The Chart Type is “Table”.

  • Unencrypted, Public-Facing Cloud Storage Assets. This chart displays the name of each unencrypted, public-facing storage asset (the Cloud Bucket) and its associated risk ranking.

    • This chart uses the query Cloud Asset (yes/no) == Yes AND Asset Type == STORAGE AND Public Facing (yes/no) == Yes AND Encrypted (yes/no) == no

    • From the data returned by the query, the Category fields specifies the columns in the table. In this case, the average value of Risk Ranking.

    • From the data returned by the query, the Series field specifies the row in the table. In this case, the table will have a row for each Cloud Bucket.

    • The Chart Type is “Table”.

  • Total Cloud Storage by Vendor. This chart displays the vendors for cloud storage.

    • This chart uses the query Cloud Asset (yes/no) == Yes AND Asset Type == STORAGE

    • From the data returned by the query, the Category field specifies the values to use to calculate the entire pie. In this case, the entire pie is the total count of Lucidum Asset Names.

    • From the data returned by the query, the Series field specifies the value to show in each slice of the pie. In this case, each slice displays Vendor.

    • The Chart Type is “Pie”.

  • Total Cloud Storage by Public-Facing. This chart displays the number of public cloud storage instances and the number of private cloud storage instances.

    • This chart uses the query Cloud Asset (yes/no) == Yes AND Asset Type == STORAGE

    • From the data returned by the query, the Category field specifies the values to use to calculate the entire pie. In this case, the entire pie is the total count of Lucidum Asset Names.

    • From the data returned by the query, the Series field specifies the value to show in each slice of the pie. In this case, each slice displays Public Facing (yes/no).

    • The Chart Type is “Pie”.

  • Total Cloud Storage by Region. This chart displays the regions where cloud storage residfes.

    • This chart uses the query Cloud Asset (yes/no) == Yes AND Asset Type == STORAGE

    • From the data returned by the query, the Category field specifies the values to show on the x-axis. In this case, the x-axis displays a count of Lucidum Asset Names.

    • From the data returned by the query, the Series field specifies the values to show on the y-axis. In this case, the y-axis displays the Region.

    • The Chart Type is “Bar”.

What are your Feelings