Cloud Configuration Governance dashboard

  • Release version: Zurich
  • Updated July 31, 2025
  • 3 minutes to read
    • Summarize
    Summarized using AI
    This content was generated using new OpenAI-powered functionality. Results are provided on an as is basis and are not guaranteed to be accurate or complete.

    Summary of Cloud Configuration Governance dashboard

    The Cloud Configuration Governance dashboard helps ServiceNow customers manage and monitor cloud resource configurations according to organizational and security standards. It provides a consolidated view of the cloud environment's health, policy violations, remediation actions, and trends, enabling proactive governance and compliance management.

    Show full answer Show less

    Access to the dashboard requires the snitomccg.ccgoperator or snitomccg.reportviewer roles. Users can open the dashboard by navigating to Cloud Configuration Governance > Dashboard within ServiceNow.

    Key Features

    • Cloud Health Score: Displays the percentage of scanned cloud resources without any audit issues, helping gauge overall compliance.
    • Violating Resources: Shows severity levels of detected audit issues categorized by cloud resource types using a stacked bar chart.
    • Violations Count: Visualizes the count of audit violations by severity through a donut chart.
    • Scanned Resources: Presents the number of scanned cloud resources per resource type to understand scan coverage.
    • Issues: A horizontal bar chart lists the number of violations per violation definition, displaying up to 10 types, with excess grouped as "Others".
    • Policy Compliance: Embedded lists show counts of compliant and non-compliant resources for individual policies.
    • Policy Set Compliance: Embedded lists display compliance status for entire policy sets, including compliant and non-compliant resource counts.
    • Remediations Overview: Visualizations such as half donut and pie charts indicate remediations performed by violation type, resource type, and remediation time.
    • Trend Analysis: Line charts track violation reporting trends over time, enabling users to monitor improvements or degradations.
    • CCG Drilldown Filter: Choice-based filter for selecting cloud provider, account, and regions to focus data and visualizations on specific environments.

    Practical Use and Benefits

    ServiceNow customers can leverage this dashboard to:

    • Continuously monitor cloud resource compliance and health scores.
    • Identify and prioritize remediation efforts based on violation severity and trends.
    • Track and report the effectiveness and timeliness of remediation activities.
    • Filter and drill down into specific cloud environments for targeted analysis.
    • Support governance teams and cloud operators in maintaining secure, compliant cloud configurations aligned with organizational policies.

    Cloud Configuration Governance is a tool used to manage the configuration of the cloud resources as per your organizational standards and established security standards. Use the dashboard to review the health score of the cloud, policy violation statistics, policy violation trend, remediations overview, and more.

    Figure 1. Cloud Configuration Governance dashboard

    Cloud Configuration Governance dashboard.

    Required ServiceNow AI Platform roles

    sn_itom_ccg.ccg_operator or sn_itom_ccg.report_viewer roles are required to view the dashboard and its widgets.

    Access the Cloud Configuration Governance dashboard

    To open the dashboard, navigate to Cloud Configuration Governance > Dashboard.

    Use cases

    For examples of how different people in your organization would use this dashboard, see these use cases.
    User Dashboard use
    sn_itom_ccg.ccg_operator or sn_itom_ccg.report_viewer
    • Review the cloud heath score.
    • Time taken to remediate the identified policy violations.
    • Understand the trend of the policy violation.

    Reports

    Title Type Source table Description
    Cloud health score Speedo chart sn_itom_ccg_scan_summary Percentage of scanned cloud resources that doesn’t have any audit issue.
    Violating resources Stacked bar chart sn_itom_ccg_scan_summary Severity of the detected audit issues per cloud resource type.
    Violations count Donut chart

    sn_itom_ccg_violation_stats

    		 Violation per severity of the audit issue.
    Scanned resources Donut chart sn_itom_ccg_scan_summary Number of cloud resources scanned per cloud resource type.

    Use the CCG Drilldown Filters to filter the data and visualize the data of interest.
    Issues Horizontal bar chart sn_itom_ccg_audit_stats Number of violations reported per violation definition.

    The chart can display a maximum of 10 bars, that is one per violation definition type. If the data contains more than 10 violation definition types, all the additional violation definition types are merged under the Others bar.

    Use the CCG Drilldown Filters to filter the data and visualize the data of interest.
    Policy compliance Embedded lists

    sn_itom_ccg_policy_compliance_stats

    		 Displays the following information for the given policy:
    • Count of compliant resources
    • Count of non-compliant resources
    Policy set compliance Embedded lists

    sn_itom_ccg_policy_set_compliance_stats

    		 Displays the following information for the given policy set:
    • Count of compliant resources
    • Count of non-compliant resources
    Total issues remediated Half donut chart sn_itom_ccg_remediation_daily_trend Remediations performed per violation definition type.
    Remediations by type Pie chart sn_itom_ccg_remediation_daily_trend Remediations performed per cloud resource type.
    Remediated on Half donut chart sn_itom_ccg_remediation_daily_trend Time taken to remediate the violations.
    Trend Line chart sn_itom_ccg_daily_trend Trend of reporting violations over time.

    Filters

    Name Type Description
    CCG Drilldown filter Choice-based filter Use this filter to select the cloud provider, cloud account, and regions for visualizing their scanned resources and issues data.