SupportDeveloper Docs

Introducing Findings: Prioritize, Act, and Automate Identity Risk Management

We are excited to introduce the Findings feature within the IAM Risk Analyzer, a robust enhancement designed to help users identify, prioritize, and act on risks based on aggregated insights. With Findings, organizations can tailor their risk management workflows, ensuring a focused and actionable approach to mitigating identity and access risks.

With Findings, you can:

Aggregate Insights into Actionable Alerts

  • Focus on what matters most: Combine system-generated and user-defined insights into prioritized findings.

  • Gain detailed context: Understand the “why” behind each finding with detailed insight descriptions and risk scores.

  • Assign risk ratings: Customize risk levels for findings to align with your organization’s priorities.

Example Finding:

A user with weak MFA credentials and a SoD (Segregation of Duties) violation accessing critical resources.

Automate Risk Responses with Playbooks

  • Streamline mitigation: Link findings to automated workflows using playbooks.

  • Define escalation paths: Notify stakeholders, suspend accounts, or initiate access reviews when high-risk findings are detected.

  • Proactive actions: Ensure quick and effective remediation of security risks.

Example Playbook:

Automatically notify the user’s manager and disable access if a finding related to weak MFA remains unresolved for two days.

Customize Risk Identification with Finding Rules

  • Tailor to your needs: Define logical expressions combining multiple insights to generate findings.

  • Flexible filters: Use entity filters to refine conditions based on identities, resources, or connections.

  • Dynamic risk assessment: Combine medium-risk insights into high-risk findings for cumulative impact analysis.

Example Finding Rule:

Generate a high-risk finding for users with both weak MFA and privileged access to financial systems.

Enhance Visibility with a Unified Dashboard

  • Centralized monitoring: View all findings in one place, categorized by risk level, entity type, or timeframe.

  • Drill-down capabilities: Explore the insights contributing to each finding with in-depth details.

  • Visualize risk: Track trends and identify areas requiring immediate action.

For more detailed information, please refer to the support docs: IAM Risk Analyzer Findings Documentation.

Reach out to our support team ([email protected]) for any help or assistance.

PreviousRelease NotesNextAction Center as a command hub for identity risk findings

Was this helpful?