Skip to main content
McAfee Enterprise MVISION Cloud

Integrate MVISION Cloud with Google Cloud Security Command Center

Google Cloud Security Command Center is a security management and data risk platform for GCP, designed to help security teams prevent, detect, and respond to threats in one location. It provides visibility for assets running in Google Cloud, as well as finding risky misconfigurations, so enterprises can reduce their exposure to threats.

To enable MVISION Cloud  for Google Cloud Security Command Center, contact MVISION Cloud Support

Prerequisites

You must add an Organization to GCP. 

Integrate MVISION Cloud with Security Command Center

To integrate MVISION Cloud with Google Cloud Security Command Center, perform the following steps:

  1. In GCP, go to IAM > Service Accounts. 
    gcp_1.png
  2. Create a new Service Account. 
    gcp_2.png
  3. Select a role. 
    gcp_3.png
  4. Grant users access to this service account. 
  5. Create a key. (You must create a key in order to integrate with MVISION Cloud.)
    gcp_4.png
  6. Select JSON.
    gcp_5.png
  7. Download the JSON Key. Send the JSON Key and the Service Account to MVISION Cloud Support.
  8. In GCP, go to Security > Security Command Center, select the Organization, and click Add Security Sources. (You must have an Organization already added to GCP to continue further.)
    gcp_6.png
  9. Search for McAfee Enterprise MVISION Cloud SCC
    gcp_7.png
  10. Sign up for the MVISION Cloud SCC.
    gcp_8.png
  11. Select the Organization. 
    gcp_9.png
  12. Click Change. 
    gcp_10.png
  13. Select the project. 
    gcp_11.png
  14. Click Use an existing service account, select the service account created previously, and click Submit.
    gcp_12.png
  15. Check Settings to make sure the Security Sources are enabled. 
    gcp_13.png
    gcp_13_2.png
  16. Share the MVISION Cloud tenant ID, environment, source ID, (from the screen above) and JSON file (with key) for the service account with MVISION Cloud Support.
  17. Navigate to the IAM page and add roles as shown for the respective user.
    gcp_14.png
  18. Go to https://console.developers.google.com/apis/api/securitycenter.googleapis.com/overview and enable Cloud Security Command Center.
    gcp_15.png
  19. Log in to MVISION Cloud, go to Policy > On-Demand Scan, and run the Security Configuration Audit Scan For GCP.
    gcp_16.png
  20. In GCP, go to GCP > Security Command Center > FINDINGS > Source Type to see the Policy Incidents.
    gcp_17.png

 

  • Was this article helpful?