Current portfolio contains 12 tracked risks with 12 active items. There are 5 critical risks, 5 high risks, 12 breached SLA items, and 0 items due within 7 days. The most common category is Authentication, and the most loaded active owner is Infrastructure Team.
No executive summary has been generated yet. Use the button below to generate one from the current SQLite risk portfolio.
Export the current risk portfolio from SQLite for operational review, management reporting, offline analysis, or documentation.
Demo dataset initialized with 12 operational risks.
| ID ↕ | Name ↕ | Severity ↕ | Category ↕ | Status ↕ | SLA | Owner ↕ | Due Date ↕ | AI Recommendation Preview | Actions |
|---|---|---|---|---|---|---|---|---|---|
| RISK-003 | OPEN S3 STORAGE BUCKET | 10 | Cloud Security | OPEN | Breached | Cloud Operations | 2026-05-24 |
Rule Based Demo
Restrict public access to the storage bucket, review bucket policy permissions, enable access logging, and validate that sensitive data is not publicly exposed. View full analysis |
View Edit |
| RISK-004 | UNPATCHED DOMAIN CONTROLLER | 10 | Infrastructure | OPEN | Breached | Infrastructure Team | 2026-05-26 |
Rule Based Demo
Prioritize patching for the domain controller, verify backup integrity before maintenance, and confirm authentication services are stable after restart. View full analysis |
View Edit |
| RISK-001 | NO MFA FOR VPN | 10 | Authentication | OPEN | Breached | Security Team | 2026-05-28 |
Rule Based Demo
Require multi-factor authentication for all VPN users, especially privileged and remote access accounts. Review VPN access logs and disable inactive accounts that no longer require remote access. View full analysis |
View Edit |
| RISK-005 | EXPOSED RDP PORT | 9 | Network | IN PROGRESS | Breached | Network Operations | 2026-05-29 |
Rule Based Demo
Block direct RDP exposure at the perimeter. Require VPN or zero-trust access, restrict source IPs, and enforce MFA for privileged remote administration. View full analysis |
View Edit |
| RISK-006 | PHISHING CAMPAIGN DETECTED | 9 | Security Awareness | OPEN | Breached | SOC Analyst | 2026-05-30 |
Rule Based Demo
Review reported messages, update mail filtering rules, notify affected users, and launch targeted phishing awareness reminders for high-risk groups. View full analysis |
View Edit |
| RISK-007 | FAILED BACKUP VALIDATION | 8 | Backup and Recovery | OPEN | Breached | Infrastructure Team | 2026-06-01 |
Rule Based Demo
Perform a documented restore test, investigate failed backup jobs, correct retention issues, and confirm recovery objectives with system owners. View full analysis |
View Edit |
| RISK-002 | OUTDATED FIREWALL FIRMWARE | 8 | Network | IN PROGRESS | Breached | Network Operations | 2026-06-05 |
Rule Based Demo
Schedule firewall firmware updates during an approved maintenance window. Confirm vendor release notes, capture configuration backups, and validate firewall rules after remediation. View full analysis |
View Edit |
| RISK-008 | INACTIVE MFA ENROLLMENT | 8 | Authentication | PENDING REVIEW | Breached | Identity Team | 2026-06-08 |
Rule Based Demo
Identify users not enrolled in MFA, enforce enrollment policies, and follow up with account owners for exceptions or service account exclusions. View full analysis |
View Edit |
| RISK-009 | ENDPOINT EDR AGENT OFFLINE | 7 | Endpoint Security | IN PROGRESS | Breached | Security Team | 2026-06-10 |
Rule Based Demo
Identify endpoints missing active EDR telemetry, redeploy the agent where needed, and verify that alerts and policy enforcement are functioning. View full analysis |
View Edit |
| RISK-010 | PRIVILEGED ACCESS REVIEW OVERDUE | 7 | Governance | OPEN | Breached | Compliance Team | 2026-06-12 |
Rule Based Demo
Complete the overdue privileged access review, validate active administrative accounts, remove unnecessary privileges, and document approvals. View full analysis |
View Edit |
| RISK-011 | MISSING INCIDENT RESPONSE PLAYBOOK | 6 | Incident Response | OPEN | Breached | SOC Analyst | 2026-06-18 |
Rule Based Demo
Create or update incident response playbooks for phishing, ransomware, cloud exposure, and privileged account compromise scenarios. View full analysis |
View Edit |
| RISK-012 | SECURITY POLICY EXCEPTION UNREVIEWED | 5 | Compliance | PENDING REVIEW | Breached | Compliance Team | 2026-06-20 |
Rule Based Demo
Review the policy exception, confirm business justification, assign an expiration date, and document compensating controls. View full analysis |
View Edit |