AdminGit2026/nis2-agile
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

[FEAT] Catalogo connettori Evidence Automation in area provider (gap competitivo Evix)

Browse Source 
8 card 'In roadmap' (M365, Google Workspace, AWS, Azure, IdP, EDR/XDR, SIEM ingestion, Ticketing)
+ badge .badge-roadmap. Predispone l'area provider ai connettori inbound.

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
This commit is contained in:
DevEnv nis2-agile 2026-05-30 08:41:57 +02:00
parent d5d83bb3b9
commit 094d453e8e
1 changed files with 61 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

61
public/integrazioniext.html
View File

@ -39,6 +39,7 @@
} }
.badge-available { background: rgba(34,197,94,.15); color: #22c55e; } .badge-available { background: rgba(34,197,94,.15); color: #22c55e; }
.badge-planned { background: rgba(234,179,8,.15); color: #eab308; } .badge-planned { background: rgba(234,179,8,.15); color: #eab308; }
.badge-roadmap { background: rgba(6,182,212,.15); color: #06b6d4; }
.provider-card h3 { font-size: .95rem; margin-bottom: .4rem; } .provider-card h3 { font-size: .95rem; margin-bottom: .4rem; }
.provider-card p { font-size: .82rem; color: var(--text-secondary); line-height: 1.5; } .provider-card p { font-size: .82rem; color: var(--text-secondary); line-height: 1.5; }
@ -251,6 +252,66 @@
</div> </div>
</div> </div>
<!-- Connettori inbound: Evidence Automation — colma il gap connettori (vs Vanta/Drata) emerso dall'analisi concorrenza Evix -->
<div class="section-title">Catalogo Connettori — Evidence Automation
<span style="font-size:.7rem;color:var(--text-secondary);font-weight:400">(Continuous Control Monitoring)</span>
</div>
<div class="integ-hero" style="margin-bottom:1rem">
<p style="margin:0">Connettori <strong>inbound</strong> per la raccolta <strong>automatica</strong> delle evidenze di conformità
(NIS2 Art.21) da cloud, identità ed endpoint — costruiti sulla base esistente <strong>Services API + Webhook HMAC</strong>.
Riducono la raccolta manuale e abilitano il monitoraggio continuo dei controlli.</p>
</div>
<div class="provider-grid">
<div class="provider-card">
<span class="badge badge-roadmap">In roadmap</span>
<h3>🟦 Microsoft 365 / Entra ID</h3>
<p>Evidenze automatiche: MFA &amp; conditional access, offboarding utenti, sicurezza mailbox, log di audit.
Mappate su Art.21 (controllo accessi, gestione identità).</p>
</div>
<div class="provider-card">
<span class="badge badge-roadmap">In roadmap</span>
<h3>🟩 Google Workspace</h3>
<p>Verifica 2SV, policy amministrative, gestione dispositivi e accessi.
Evidenze per controllo accessi e sicurezza degli endpoint.</p>
</div>
<div class="provider-card">
<span class="badge badge-roadmap">In roadmap</span>
<h3>🟧 Amazon Web Services</h3>
<p>IAM, CloudTrail, Security Hub, cifratura S3/EBS.
Raccolta evidenze su crittografia, logging e gestione accessi cloud.</p>
</div>
<div class="provider-card">
<span class="badge badge-roadmap">In roadmap</span>
<h3>🟦 Microsoft Azure</h3>
<p>Defender for Cloud, Azure Policy, Network Security Group.
Posture di sicurezza cloud → controlli Art.21 e asset critici.</p>
</div>
<div class="provider-card">
<span class="badge badge-roadmap">In roadmap</span>
<h3>🔐 Identity Provider (Okta / Entra / Google)</h3>
<p>Enforcement SSO/MFA, lifecycle utenti, revoche accessi.
Evidenza continua su gestione identità e accessi privilegiati.</p>
</div>
<div class="provider-card">
<span class="badge badge-roadmap">In roadmap</span>
<h3>🛡️ EDR / XDR (CrowdStrike, SentinelOne, Defender)</h3>
<p>Copertura endpoint, rilevamento minacce e stato agenti →
popolano gli asset critici e aprono incidenti Art.23 in automatico.</p>
</div>
<div class="provider-card">
<span class="badge badge-roadmap">In roadmap</span>
<h3>📥 SIEM / SOC — Ingestion (inbound)</h3>
<p>Alert da Splunk, Microsoft Sentinel, Elastic, Wazuh → apertura automatica di incidenti
NIS2 (Art.23) con triage e timeline. Complementare al webhook outbound già disponibile.</p>
</div>
<div class="provider-card">
<span class="badge badge-roadmap">In roadmap</span>
<h3>🎫 Ticketing (Jira / ServiceNow)</h3>
<p>Sincronizzazione bidirezionale di non-conformità/CAPA e task di raccolta evidenze.
Le azioni correttive NIS2 diventano ticket tracciati.</p>
</div>
</div>
<!-- Tabs --> <!-- Tabs -->
<div class="tab-nav"> <div class="tab-nav">
<button class="tab-btn active" onclick="showTab('api')">Services API</button> <button class="tab-btn active" onclick="showTab('api')">Services API</button>