Introducing Findings: Prioritize, Act, and Automate Identity Risk Management

We are excited to introduce the Findings feature within the IAM Risk Analyzer, a robust enhancement designed to help users identify, prioritize, and act on risks based on aggregated insights. With Findings, organizations can tailor their risk management workflows, ensuring a focused and actionable approach to mitigating identity and access risks.

With Findings, you can:

Aggregate Insights into Actionable Alerts

Focus on what matters most: Combine system-generated and user-defined insights into prioritized findings.
Gain detailed context: Understand the “why” behind each finding with detailed insight descriptions and risk scores.
Assign risk ratings: Customize risk levels for findings to align with your organization’s priorities.

Example Finding:

A user with weak MFA credentials and a SoD (Segregation of Duties) violation accessing critical resources.

Automate Risk Responses with Playbooks

Streamline mitigation: Link findings to automated workflows using playbooks.
Define escalation paths: Notify stakeholders, suspend accounts, or initiate access reviews when high-risk findings are detected.
Proactive actions: Ensure quick and effective remediation of security risks.

Example Playbook:

Automatically notify the user’s manager and disable access if a finding related to weak MFA remains unresolved for two days.

Customize Risk Identification with Finding Rules

Tailor to your needs: Define logical expressions combining multiple insights to generate findings.
Flexible filters: Use entity filters to refine conditions based on identities, resources, or connections.
Dynamic risk assessment: Combine medium-risk insights into high-risk findings for cumulative impact analysis.

Example Finding Rule:

Generate a high-risk finding for users with both weak MFA and privileged access to financial systems.

Enhance Visibility with a Unified Dashboard

Centralized monitoring: View all findings in one place, categorized by risk level, entity type, or timeframe.
Drill-down capabilities: Explore the insights contributing to each finding with in-depth details.
Visualize risk: Track trends and identify areas requiring immediate action.

For more detailed information, please refer to the support docs: IAM Risk Analyzer Findings Documentation.

Reach out to our support team ([email protected]) for any help or assistance.

PreviousIntroducing Smarter Access Reviews, Enhanced Dashboards, and Expanded Identity Management NextAction Center as a command hub for identity risk findings

Was this helpful?

hashtagAggregate Insights into Actionable Alerts

hashtagExample Finding:

hashtagAutomate Risk Responses with Playbooks

hashtagExample Playbook:

hashtagCustomize Risk Identification with Finding Rules

hashtagExample Finding Rule:

hashtagEnhance Visibility with a Unified Dashboard