Contact UsTry it for free
© 2026 Direct Cursus Technology L.L.C.

Creating a DSPM scan

Written by
Improved by
Updated at January 13, 2026

Note

This feature is in the Preview stage. To get access, contact tech support or your account manager.

Data Security Posture Management (DSPM) scans data sources – Yandex Object Storage buckets and Yandex 360 Disks – for sensitive information in storages.

Before you start using DSPM, set up the default folder to store Security Deck data.

Creating a scan for Object Storage

  1. Go to Yandex Security Deck.

  2. In the left-hand panel, select DSPM and go to the Regular scans tab.

  3. In the top-right corner, click New scan.

  4. Under Data sources, select a data source with Object Storage buckets.

    If necessary, create a new data source.

  5. Under Access to data in sources, select a service account you are going to use to run the scans. If you need to create a new service account, click Create new.

    Warning

    To run the scan, make sure the service account is assigned the dspm.worker role for all buckets you want to scan. If the buckets are encrypted, your service account also needs the kms.keys.decrypter role for the relevant Yandex Key Management Service encryption keys.

  6. Under Data search categories, select the data categories to scan for:

    • Financial data: Credit or debit card details.
    • Personal data: Full names, email addresses, phone numbers, and social security numbers (SNILS).
    • Secrets: Cloud access keys, passwords, tokens, SSH keys, etc.

    You can select all the available categories at once or any combination of them.

  7. Under Scan settings:

    1. In the Start field, select the new scan frequency: Once, Every 7 days, Every 30 days, Every 90 days, or set a custom frequency by selecting Custom number of days.

    2. In the Scan name field, specify the name to identify your new scan. Follow these naming requirements:

      • It must be from 2 to 63 characters long.
      • It can only contain lowercase Latin letters, numbers, and hyphens.
      • It must start with a letter and cannot end with a hyphen.

  8. Click Create scan.

The new scan will appear in the scan list, ready to run.

Creating a scan for Yandex 360

  1. Go to Yandex Security Deck.

  2. In the left-hand panel, select DSPM and go to the Regular scans tab.

  3. In the top-right corner, click New scan.

  4. Under Data sources, select a data source with Yandex 360 resources.

    If necessary, create a new data source.

  5. Under Data search categories, select the data categories to scan for:

    • Financial data: Credit or debit card details.
    • Personal data: Full names, email addresses, phone numbers, and social security numbers (SNILS).
    • Secrets: Cloud access keys, passwords, tokens, SSH keys, etc.

    You can select all the available categories at once or any combination of them.

  6. Under Scan settings:

    1. In the Start field, select the new scan frequency: Once, Every 7 days, Every 30 days, Every 90 days, or set a custom frequency by selecting Custom number of days.

    2. In the Scan name field, specify the name to identify your new scan. Follow these naming requirements:

      • It must be from 2 to 63 characters long.
      • It can only contain lowercase Latin letters, numbers, and hyphens.
      • It must start with a letter and cannot end with a hyphen.

  7. Click Create scan.

The new scan will appear in the scan list, ready to run.

See also

Previous
Creating a data source
Next
Overview