Data security analytics
The Data security analytics dashboard reports security issues and sensitive data found within your SaaS applications, cloud environments, and HTTP traffic. It visualizes event data collected from your DLP and CASB policies. If neither DLP nor CASB is enabled in your account, the dashboard appears empty.
To view the Data security analytics dashboard:
- Log into Zero Trust ↗.
- Go to Analytics > Dashboards.
- Select Data security analytics.
To populate this dashboard, you must have:
- Data Loss Prevention (DLP) configured to generate event data from scanned web traffic or SaaS applications.
- At least one Cloud Access Security Broker (CASB) integration connected to capture findings from your SaaS applications or cloud environments.
The dashboard includes the following panels and metrics:
- SaaS and Cloud findings by count
- Posture findings by Severity
- DLP matches in HTTP requests over time
- Top integrations by posture findings
- Top integrations by content findings
- Top cloud resources by findings
- Top users by DLP policies triggered
The SaaS and Cloud findings by count chart shows a time series view of Posture and Content findings. Posture denotes posture findings which include misconfigurations, unauthorized user activity, and other data security issues. Content denotes content findings which include instances of potential data exposure as identified by DLP.
Each bar represents the total number of findings detected within a given time interval. You can use this view to observe patterns or spikes in findings over time. Hover over any bar to view the exact count of Posture and Content findings for that period.
To review findings in detail, log into Zero Trust ↗ and go to CASB > Posture Findings or Content Findings.
The Posture findings by severity chart displays the distribution of CASB findings based on their severity levels. Each segment of the circle represents the number of posture issues classified as Critical, High, Medium, or Low.
To review findings in detail, log into Zero Trust ↗ and go to CASB > Posture Findings.
The DLP matches in HTTP requests over time chart displays when DLP policies were triggered by users over a specified period of time.
Unlike the SaaS and Cloud findings by count chart above, which relies on CASB findings from data at rest, the DLP matches in HTTP requests over time chart reflects DLP detections in HTTP traffic — helping you monitor sensitive data movement in real time.
To review DLP detections in detail, log into Zero Trust ↗ and go to Logs > Gateway > HTTP. Use the DLP profiles or DLP match data filters to view HTTP requests that triggered a DLP policy.
Was this helpful?
- Resources
- API
- New to Cloudflare?
- Directory
- Sponsorships
- Open Source
- Support
- Help Center
- System Status
- Compliance
- GDPR
- Company
- cloudflare.com
- Our team
- Careers
- © 2025 Cloudflare, Inc.
- Privacy Policy
- Terms of Use
- Report Security Issues
- Trademark