This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Announcements
Webinar May 14th: Gemini's generative AI within Google SecOps
Webinar May 29th: Log Ingestion: Bindplane + Google SecOps
Log in to ask a question

Security Command Center scan for projects that are deleted

Posted on 10-20-2021 07:18 AM
SevenBridges
Bronze 1
Bronze 1
Reply posted on --/--/---- --:-- AM

Hi,

When projects in GCP are in shut-down state, will Security Command Center remove all project-related vulnerabilities (vulnerabilities for all resources within the project)?

As far as I see, non of them is removed, vulnerabilities still remain.

Should we wait for 30-day period for the projects to be deleted, after which vulnerabilities will be automatically removed? Or will we have to mark them one-by-one with security marks?

Thanks in advance for an answer.

Best Regards,

SBG

0 1 543
Topic Labels
0 Likes
1 REPLY 1

Posted on --/--/---- --:-- AM
Nick_Troutini
Staff
Reply posted on --/--/---- --:-- AM
Hey @SevenBridges thanks for the question. Apologies for taking so long to get back to you here, we just wanted to make sure we get you the correct answer!
 
As it stands, SHA misconfigurations should be automatically removed, but only if the project is deleted versus still provisioned and shut down. Threats will remain active until manually addressed by the client since deleting a project does not necessarily fully address the issue of a threat actor that may have been active; the actor may have moved on to other projects and you can't tell until you manually investigate. 
 
Does this help? Let me know!
 
-Nick
0 Likes
Top Solution Authors
View all