Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Add risk customization docs #441

Merged
merged 2 commits into from
Nov 5, 2024
Merged
Show file tree
Hide file tree
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
71 changes: 71 additions & 0 deletions docs/platform/security/customize/risk.mdx
Original file line number Diff line number Diff line change
@@ -0,0 +1,71 @@
---
title: Customize How Risk Factors Affect Asset Scores
sidebar_label: Customize Risk Factors
sidebar_position: 10
description: Mondoo considers multiple contextual risk factors when evaluating the security of your assets. To customize per your business's security priorities, you can choose which contextual risk factors affect your assets' scores.
image: /img/featured_img/mondoo-feature.jpg
---

Mondoo considers multiple [contextual risk factors](https://mondoo.com/docs/platform/security/posture/findings/#factor-contextual-risk) when evaluating the security of your assets. To customize per your business's security priorities, you can choose which contextual risk factors affect your assets' scores.

For a finer degree of control over the impact that risk factors have on asset scores, you can choose not only _whether_ a risk factor affects scores, but _how much_ a risk factor affects scores.

The settings you choose to customize risk factors apply to all assets in the space. If you have multiple spaces, any risk customization you make in one space doesn't affect other spaces.

import Partial from "../../partials/_editor-owner.mdx";

<Partial />{" "}

## Choose which risk factors affect security scores

1. In the [Mondoo Console](https://console.mondoo.com), [navigate](/platform/start/navigate) to the space you want to customize.

2. In the side navigation bar, select **Settings**.

3. Select the **Security Model** tab.

![Customize how risk factors affect asset scores in Mondoo](/img/platform/security/custom-risk.png)

4. In the list of risk factors, enable or disable the toggle beside a risk factor:

- An enabled toggle (purple, with the switch to the right) indicate that the risk factor does affect the security scores of assets in the space.

- A disabled toggle, (white, with the switch to the left) indicate that the risk factor does not affect the security scores of assets in the space.

Changes take place immediately.

## Choose how much the different risk factors affect security scores

You can change the weight of impact that a risk factor has on asset security scores.

1. In the [Mondoo Console](https://console.mondoo.com), [navigate](/platform/start/navigate) to the space you want to customize.

2. In the side navigation bar, select **Settings**.

3. Select the **Security Model** tab.

4. Select the **SHOW ADVANCED SETTINGS** button.

![Customize how much risk factors affect asset scores in Mondoo](/img/platform/security/custom-risk-advanced.png)
tas50 marked this conversation as resolved.
Show resolved Hide resolved

5. For each risk factor:

- Raise or lower the percentage to control how the risk factor raises or lowers security scores.

A positive percentage means higher risk. When Mondoo detects the risk factor for an asset, it raises the asset's score (toward high/critical). The higher the positive percentage, the more Mondoo weights the risk factor's presence as a security concern.

A negative percentage means lower risk. When Mondoo detects the risk factor for an asset, it lowers the asset's score (toward medium/low). The lower the negative percentage, the more Mondoo weights the risk factor's presence as a security aid.

- Enable or disable the toggle to the left of the risk factor to turn it on or off, as described in the section above.

:::tip

To return all settings to the Mondoo defaults, select the **RESET TO DEFAULTS** button.

:::

6. To save the new settings, select the **SAVE CHANGES** button.

7. To return to the regular Risk Configuration settings without the percentages, select the **HIDE ADVANCED SETTINGS** button.

---
2 changes: 2 additions & 0 deletions docs/platform/security/posture/findings.mdx
Original file line number Diff line number Diff line change
Expand Up @@ -46,6 +46,8 @@ These are the contextual risk factors that Mondoo uses when calculating risk:

Contextual risk factors allow Mondoo to more accurately assess the risk of a finding because they consider the asset, the environment in which the finding exists.

You can customize the degree of impact that different risk factors have on asset security scores. To learn how, read [Customize How Risk Factors Affect Asset Scores](/platform/security/customize/risk/).

## Blast radius

The _blast radius_ of a finding is the impact that the finding has on a space. Mondoo can expose the same finding on multiple assets in a space. It calculates blast radius of the finding using the risk scores of all of the assets in the space that have that finding.
Expand Down
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added static/img/platform/security/custom-risk.png
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading