Skip to content

Customize policies

You can customize Sophos Cloud Optix policies.

For example, you may want to do some of the following:

  • Specify which environments the policy applies to (if you have different environments with different compliance needs.)
  • Apply the policy only to certain resources or user groups.
  • Remediate certain issues automatically.

To customize a policy, do as follows:

  1. In Sophos Cloud Optix, go to Compliance > Policies.
  2. Do one of the following:

    • Click Create Custom Policy at the top of the page to create a completely new policy.
    • Select an existing policy in Out of the Box Policies and click Customize.
  3. You can provide a Policy Name as well as Compliance Tag to differentiate the alerts that will be raised for this policy check.

  4. Use the Select Environments filter if you want to specify the environments to check.
  5. Use Resource Tags if you want to limit the policy’s scope to certain resources (and so limit alerts). Tags are widely used in public cloud environments to logically group resources together: use the same tags here that you use in your environment.

    Note

    You can configure the tags as a key value pair, as you may have configured them in your environment.

  6. In the list of rules, you can do as follows:

    • Choose whether rules are enabled.
    • Set the severity level of each rule.
  7. Click Save.

For more details about customizing rules for container images, see Container image rules.