Hello Everyone,
We are super excited to announce the rolled out of new SailPoint Identity Risk SaaS connectors in Identity Security Cloud - CrowdStrike, Proofpoint and Elevate Security. These SaaS Connectors do not require a Virtual Appliance to run and provide SaaS-SaaS connectivity. These SaaS Connectors has a core capability for bringing risk information for accounts for Identity Protection.
Capabilities:
These three Identity Risk SaaS Connectors has following capabilities,
Note -
CrowdStrike Connector brings the risk information from CrowdStrike Falcon Identity Protection and Proofpoint brings the risk information from Proofpoint Nexus People Risk Explorer (NPRE) module.
Identity Protection Capabilities
* With the security reports in the particular systems like CrowdStrike, Proofpoint, Elevate Security, Microsoft Entra etc., you can gauge the probability of compromised user accounts in your environment.
* A user flagged for risk is an indicator for a user account that might have been compromised. The risky user represents the probability that a given identity or account is compromised.
* These risks are calculated offline these system’s internal and external threat intelligence sources. Overall, these capabilities is termed as, “Identity Protection”.
Documentation References
NOTE -
If you are interested to check the Identity Protection Capabilities of Microsoft Entra (SaaS), you can refer Identity Protection - Aggregating Risk Information..
For VA based Microsoft Entra ID Connector, you can refer Identity Protection - Aggregating Risk Information..
If you have any questions, please reach out to us, and we would be more than happy to help you in all possible ways.
Thanks!