Audit Engine
Overview
Section titled “Overview”The Audit Engine performs a deep, phased collection across your environment to produce auditor-grade evidence. Where a posture scan finds misconfigurations, the audit engine systematically gathers the artifacts that prove your controls’ state.
Key benefits
Section titled “Key benefits”| Benefit | Capability | Business value |
|---|---|---|
| Evidence | Phased collection with stored artifacts | Hand auditors what they ask for |
| Depth | Dedicated audit collector checks | Goes beyond pass/fail to documented state |
| Bilingual | English and Hebrew audit reports | One engine for global and Israeli audiences |
How it works
Section titled “How it works”The engine runs as a sequence of collection phases, each gathering a category of configuration and policy evidence (the audit profile drives a dedicated set of audit collector checks). Results are written in a structured, line-oriented format and turned into a formatted report.
You can run the audit standalone or alongside a scan via the Run Audit option on the New Scan form (it appears for the full and EVERYTHING profiles).
Implementation / workflow
Section titled “Implementation / workflow”- On the New Scan form, enable Audit Collector (or run an
audit-profile scan). - Provide the audit scope (organization ID and any project prefixes).
- Launch and wait for the audit phases to complete.
- Download the report — available in English and Hebrew.
| Endpoint | Purpose |
|---|---|
POST /scans/{scan_id}/audit | Start the audit for a scan (202 Accepted) |
GET /scans/{scan_id}/audit/status | Audit progress |
GET /scans/{scan_id}/audit/report/en | English report |
GET /scans/{scan_id}/audit/report/he | Hebrew report |
Best practices
Section titled “Best practices”- Scope the audit to the organization and prefixes that matter to the engagement.
- Pair audit evidence with the CIS Benchmark for a compliance narrative.