Community
Questions Library
Docs
Blog
Events
Swag
Github
Slack
JupiterOne
Discussions
Release Notes
Contact Us
Working with Problems - AskJ1 Community
<main> <article class="userContent"> <p>JupiterOne groups <a rel="nofollow" href="https://jupiterone.vanillacommunities.com/kb/articles/804-compliance-gap-analysis">compliance gaps</a> and non-informational <a rel="nofollow" href="https://jupiterone.vanillacommunities.com/kb/articles/940-alerts-and-alert-rules">rule alerts</a> in a class called Problems. This concept enables you to see all your issues grouped together, making it easier to focus on what problems you must resolve in your environment.</p> <p>When a problem is detected, J1 automatically builds a relationship between the <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">Problem</code> asset, and the assets that have contributed to the detection of the problem. Assets in the J1 graph have a red dot next to them if a relationship to a problem exists.</p> <p><img src="https://us.v-cdn.net/6035534/uploads/NI8KRAC93CZY/graph-problems.png" alt="" class="embedImage-img importedEmbed-img"></img></p> <p>Click the red dot to see the menu, and click the blue i icon to open the information panel to the right.</p> <p><img src="https://us.v-cdn.net/6035534/uploads/TW34DWRL5HG9/problems-info.png" alt="" class="embedImage-img importedEmbed-img"></img></p> <p>Click any of the problems to go to the compliance gap or rule alert to learn more about the specific problem.</p> <p>You ask questions like "How many open compliance gaps do I have?" with a query such as:<br><code class="code codeInline code codeInline" spellcheck="false" tabindex="0">find jupiterone_compliance_gap as gap return count(gap)</code>. Your J1QL query results also depict problems with a red dot to the left of the issue.</p> <p>You can also run a query to determine how many compliance frameworks have an open compliance gap by using:</p> <p><code class="code codeInline code codeInline" spellcheck="false" tabindex="0">find unique Standard that has (compliance_section) that has compliance_requirement that violates << jupiterone_compliance_gap return count(Standard)</code>.</p> <p>To know which critical assets related to compliance gaps may need remediation, you can run queries such as: <code class="code codeInline code codeInline" spellcheck="false" tabindex="0">find #CriticalAsset that has jupiterone_compliance_gap</code> as shown in this example:</p> <p><img src="https://us.v-cdn.net/6035534/uploads/O3UPF7IW5O1U/problems-query.png" alt="" class="embedImage-img importedEmbed-img"></img></p> <h2 data-id="problems-as-a-kpi">Problems as a KPI</h2> <p>In J1, on your landing page, the number of problems in your environment is a Key Progress Indicator (KPI) for the status of your cloud security posture.</p> <p><img src="https://us.v-cdn.net/6035534/uploads/UYFBBTBGTYM7/problems-kpi.png" alt="" class="embedImage-img importedEmbed-img"></img></p> <p>Click any of the KPIs to see more information. J1 recommends that you import the compliance gaps <a rel="nofollow" href="https://jupiterone.vanillacommunities.com/kb/articles/940-alerts-and-alert-rules">alert rules pack</a> in J1 Alerts.</p> <p><img src="https://us.v-cdn.net/6035534/uploads/KCEGO6SJDN19/alerts-import-gaps.png" alt="" class="embedImage-img importedEmbed-img"></img></p> </article> </main>