Go Up
You are here: IntelligenceReports and Report PacksPredefined ReportsIT Risk Assessment Reports

IT Risk Assessment Reports

The IT Risk Assessment pack includes call-to-action reports that help you identify configuration gaps in your environment and understand their impact on overall security. The reports are organized over the weak points such as overly broad assignment of access rights, loose password policies, and stale accounts. Use these reports to ensure your IT risks stay in the safe zone and take actions if necessary.

Risk dashboards are located in the IT Risk Assessment folder under the Predefined node.

Reports in the pack give you a bird's eye view of the following high-risk areas:

  • Data
  • Permissions
  • Accounts

Within each area, Netwrix Auditor industry experts identified risk categories and suggested guidelines for them. For example, if the number of administrative accounts in your organization is less than 2%, the risk should be considered insufficient. If the value is between 2% and 3%, the risk is moderate, while any value that exceeds 3% should be considered a high risk. These guidelines are based on security best practices and analytics data. See Review how risks in each category are estimated for more information.

The product compares your environment configuration against these metrics and assigns a risk level to each category. The risk levels in each category determine the overall risk level for the area you review. The following risk levels are available:

Risk level Color Description
Acceptable Green Insufficient risk. Keep monitoring your environment on a regular basic.
Pay attention Yellow Moderate risk. Proactively mitigate risks and adjust your workflows before the breach occurs.
Take action Red High risk. Respond to the threat as soon as possible.

After reviewing general risks for each category, drill-down to details. Clicking the links opens the reports, which show all the data you need to assess your IT environment and provide a timely response to potential threats.

NOTE: If you are sure that some audit data is missing (e.g., you do not see information on your file servers in reports and search results), verify that the Audit Database settings are configured and that data is written to databases that reside on the default SQL Server instance.

By default, Netwrix Auditor allows generating reports and running interactive searches on data collected in the last 180 days. If you want to investigate incidents that occurred more than 180 days ago, ask your Netwrix Auditor Global administrator to import that data from the Long-Term Archive.

Depending on reports you want to generate, you need to configure the product to collect state-in-time data for Active Directory and File Servers.

NOTE: Each report has a set of filters which help organize audit data in the most convenient way. See Leverage Filtering Capabilities for more information. You can also create a subscription to any report you want to receive on a regular basis. See Subscriptions for more information.

Go Up