# GCP Security Command Center The GCP Security Command Center (SCC) integration in DuploCloud provides key security insights—threats, vulnerabilities, and compliance benchmarks—in a unified interface. This page explains how to activate and configure GCP SCC with DuploCloud. ## Prerequisites **Activate Security Command Center in GCP**: Before enabling SCC features in DuploCloud, activate the Security Command Center directly in your GCP account. GCP does not support enabling SCC via API. **Enable Security Command Center Features in DuploCloud**: Once SCC is activated in GCP, enable and configure it in DuploCloud: 1. In the DuploCloud Portal, go to **Administrator** → **System Settings**. 2. Select the **GCP Account Security** tab. 3. In the **Account** list box, choose your GCP account. 4. Click **Enable Security Command Center**. 5. Enable the following services: * **Security Health Analytics** * **Web Security Scanner** * **Event Threat Detection** * **Container Threat Detection** * **Virtual Machine Threat Detection** 6. Click **Save Settings**. Security Command Center features are enabled for DuploCloud. {% hint style="info" %} It may take approximately **24-48 hours** for security findings and data to populate in the DuploCloud Portal. {% endhint %} ## Viewing GCP Security Insights in DuploCloud After configuring the GCP Security Command Center (SCC), DuploCloud displays SCC findings directly within the platform to help you identify vulnerabilities, monitor compliance, and respond to threats. ### Threats To view SCC Threat data from the DuploCloud Portal, navigate to **Security** -> **Threats**. You can filter threats by their status (Active or Inactive) and severity (High, Medium, or Low), helping you focus on the most urgent incidents. ### Vulnerabilities To view the Vulnerabilities data in the DuploCloud Portal, navigate to **Security** → **Vulnerabilities**. This dashboard serves as your primary tool for tracking and managing vulnerabilities across your environment, with a focus on high-risk vulnerabilities and their associated findings. The Vulnerabilities Dashboard provides an overview of your environment's security state. This overview helps you quickly gauge the scale and urgency of your security posture, prioritizing the most critical vulnerabilities and findings that need attention.

The SCC **Vulnerabilities** Dashboard in the DuploCloud Portal

The main Vulnerabilities dashboard also allows you to tab between **By Vulnerability** and **All Findings**: **By Vulnerability**: This tab lets you explore **Details** or **Findings** for each vulnerability. * The **Details** tab provides an overview of the vulnerability, including its description, associated standards, and the total and active findings linked to the vulnerability. * The **Findings** tab gives a more granular view of each specific finding related to the vulnerability, showing the status, severity, category, and the affected resources. **All Findings:** This tab allows you to select individual findings to view a detailed summary. You can also view the data in a JSON View format for a detailed, structured, machine-readable representation.

A detailed summary of the **User Managed Service Account Key** finding

A JSON view of the **User Managed Service Account Key** finding

### Standards To access and view the SCC Standards Dashboard in the DuploCloud Portal, navigate to **Security** -> **Standards**. This dashboard is your central hub for monitoring and maintaining compliance with industry-recognized security frameworks such as NIST, HIPAA, PCI-DSS, and CIS. The Standards Dashboard is organized with tabs representing the various security standards. By selecting a standard, you can view a list of rules related to that standard. You can filter rules by Status (Active or Inactive) or Severity (Critical, High, Medium, or Low).

The SCC **Standards** Dashboard in the DuploCloud Platform

Click on a specific rule for deeper insights including **Details** and **Findings**: **Details**: This tab provides additional details, including a description of the rule, the total number of findings related to the rule (including how many are active), and the associated compliance standards.

The **Details** tab for the **BUCKET_POLICY_ONLY_DISABLED** rule

**Findings:** This tab provides a detailed description of each finding associated with the rule, offering a granular view of compliance issues. It includes the finding Status (Active or Resolved), Severity (Critical, High, Medium, or Low), category (e.g., "Flow logs disabled"), the affected resource, timestamps, and more.

The **Findings** tab for the **BUCKET_POLICY_ONLY_DISABLED** rule

--- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.duplocloud.com/docs/automation-platform/overview-1/gcp-services/gcp-security-command-center.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.