# Introducing Findings: Prioritize, Act, and Automate Identity Risk Management We are excited to introduce the Findings feature within the IAM Risk Analyzer, a robust enhancement designed to help users identify, prioritize, and act on risks based on aggregated insights. With Findings, organizations can tailor their risk management workflows, ensuring a focused and actionable approach to mitigating identity and access risks. {% embed url="" %} With Findings, you can: ## Aggregate Insights into Actionable Alerts * Focus on what matters most: Combine system-generated and user-defined insights into prioritized findings. * Gain detailed context: Understand the “why” behind each finding with detailed insight descriptions and risk scores. * Assign risk ratings: Customize risk levels for findings to align with your organization’s priorities. #### Example Finding: A user with weak MFA credentials and a SoD (Segregation of Duties) violation accessing critical resources. ## Automate Risk Responses with Playbooks * Streamline mitigation: Link findings to automated workflows using playbooks. * Define escalation paths: Notify stakeholders, suspend accounts, or initiate access reviews when high-risk findings are detected. * Proactive actions: Ensure quick and effective remediation of security risks. #### Example Playbook: Automatically notify the user’s manager and disable access if a finding related to weak MFA remains unresolved for two days. ## Customize Risk Identification with Finding Rules * Tailor to your needs: Define logical expressions combining multiple insights to generate findings. * Flexible filters: Use entity filters to refine conditions based on identities, resources, or connections. * Dynamic risk assessment: Combine medium-risk insights into high-risk findings for cumulative impact analysis. #### Example Finding Rule: Generate a high-risk finding for users with both weak MFA and privileged access to financial systems. ## Enhance Visibility with a Unified Dashboard * Centralized monitoring: View all findings in one place, categorized by risk level, entity type, or timeframe. * Drill-down capabilities: Explore the insights contributing to each finding with in-depth details. * Visualize risk: Track trends and identify areas requiring immediate action. For more detailed information, please refer to the support docs: [IAM Risk Analyzer Findings Documentation](/iam-risk-analyzer/findings.md). Reach out to our support team () for any help or assistance. --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.balkan.id/updates/release-notes/introducing-findings-prioritize-act-and-automate-identity-risk-management.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.