- Access exclusive content
- Connect with peers
- Share your expertise
- Find support resources
Best Practice Assessment
Executive Summary Key Recommendations
The BPA executive summary provides key recommendation based on CISSP security control. The current version of executive summary focuses on three security controls as:
The “View” button redirect to the Mapping definition page with the filtered view that shows BPA Checks listed under Capability summary as “Preventative”.
This section shows how we get the Preventative percentage numbers and the description per score range. In Best Practice Assessment summary page if the passing percentage of Preventative is less than 60% under Capability Summary section than Key Recommendation will provide recommendation against “Preventative” security control.
Below table shows different score ranges and their text.
Passing % Range |
Color |
Potential Impact |
Recommendation |
Action Required |
0 - 39 |
Red |
No single layer of security will ensure that your business has the appropriate level of security to identify and remediate potential threats. To eliminate as many vulnerabilities as possible and to keep your business systems and network optimally secure, you need to deploy preventative security controls. |
Our recommendation is to identify list of failed BPA checks and the ones that are not configured to improve your Preventative security controls |
Identify and review individual BPA checks, and adhere to best practices to build robust security posture. |
40 - 79
|
Yellow |
Ensure that your business has the appropriate level of security to identify and remediate potential threats. Eliminate vulnerabilities to keep your business systems and network optimally secure, and use preventative security controls. |
Our recommendation is to identify gaps and remediate failed BPA checks to improve your Preventative security controls. |
Ensure efficient and secure use of Best Practices, it is recommended to review each Best Practice checks to resolve misconfigurations. |
80 - 99 |
Green |
Always adhere to Preventative security controls to reduce the impact of a successful threat event. |
Our recommendation is to identify a list of BPA Checks to take action against and remediate those failed BPA checks to achieve greater Preventative security controls. |
Review BPA checks that are not following best practices and plan to remediate if there are any misconfigurations. |
100 |
Dark Green |
Your company is following best practices for standards, encryption, and firewalls. |
Your company is adhering to best practices for a strong security posture by using preventative countermeasures. |
No action needed. |
Note: Above logic and description in the table will remain same for performance and detective security controls.
Contact BPA team at bpa@paloaltonetworks.com
Visit us at www.paloaltonetworks.com/