IBM Technical Exchange India Security User Group

• Do you find it challenging to identity top risky users in your organization?
• Do you have visibility of incidents that termed them as risky users?
• Does your endpoint manager give you the ability to configure risk rules?

The security dashboard aggregates all of this risk information and presents the administrator with a holistic view of their organization’s risk profile. Admins can use the security dashboard to monitor overall risky trends as well as identify the most risky users. You can configure from set of rules available to be considered for risk profile.

There are risk rules, which define the parameters used to identify risk incidents. Administrators can view and modify these risk rules using the risk rule configurator.

Admins can exclude rules from being evaluated and change the severity associated with the goal of configuring a set of rules that matters most to their organization. It is important to note that although the risk rule may be in the enabled state, the administrator may still have some pre-requisites to configure to detect these incidents.





Advantages of user risk management

How do I enable this?
1. Login to MaaS360 console with your user who can enable service.
2. Go to Setup > Services
3. Enable "User Risk Management"




Enabling this service will start the identification of risk incidents which you can view in the Security Dashboard in Security > Security Dashboard.
It will take around 24 hours after the service is enabled for the Security Dashboard to show the risk incidents.
To view and customize which incidents are considered as risky please use the Risk Rule Configurator in Security > Risk Rule Configurator.

More details are available on Knowledge Center link:
https://www.ibm.com/docs/en/maas360?topic=security-user-risk-management-maas360