Get Started with Control Criticality

Control Criticality is a policy compliance feature that provides ratings for controls, including the ability to customize ratings at the control level and at the policy level. If you have the PC app, this feature can be enabled for your subscription by Support or your Account Manager.

Check it out

Go to PC > Policies > Controls. You'll see a Criticality column with the criticality level assigned to each control.

Review & customize levels

We've defined 5 criticality levels ranging from Minimal to Urgent, and each control is assigned a level. You can rename these levels and change their colors if you want (go to PC > Policies > Setup and select Control Criticality Levels).

Tell me about approach used for setting the default scoresTell me about approach used for setting the default scores

How to update control criticality

You can change or remove the criticality for any control at the control level or at the policy level.

Your reports

We'll display control criticality in compliance reports and on the Policy Summary dashboard. Policy reports will include 2 pie charts showing the total number of passed and failed controls at each criticality level and a Criticality column under Control Statistics. If you don't want to see any criticality information in your report, you can choose "Do Not Include Criticality" in the policy report template. 

Note that any control that does not have a criticality level is counted as "Undefined".

Can I filter reports by criticality?Can I filter reports by criticality?

Yes! For policy reports, edit your policy report template and select the criticality levels you want to include in the report or choose "Do Not Include Criticality" if you don't want to see any criticality information in the report. For the Individual Host Compliance report, edit the report setup options.