Ranked Risk Insights

Prioritised using AI relevance and supporting document evidence.

Documents analysed · 10
Select analysis scope
Mock data
0 selected
Source types

All Ranked Risks

Multi-factor authentication gaps
MFA is not enforced for remote access to critical systems, creating authentication vulnerabilities.
1 control
Document
Relevance · 91%
Document excerptsRemote Access Policy.pdf
"Remote access to production environments must use multi-factor authentication. Current policy allows single-factor VPN access."
"Emergency access procedures should maintain MFA requirements to prevent unauthorized system access."
Patch management delays
Critical security patches are not applied within required timeframes, leaving systems vulnerable.
1 control
Document
Relevance · 85%
Document excerptsPatch Management Procedure.pdf
"Critical security patches must be applied within 30 days of release. Current process averages 45 days."
"Patch testing should not delay deployment beyond the critical window."
Inadequate access provisioning
Provisioning requests are not consistently approved by management, increasing the risk of excessive access.
1 control
Document
Relevance · 83%
Document excerptsAccess Provisioning SOP.pdf
"The provisioning process requires manager approval for all access requests. However, our audit found that 30% of recent requests bypassed this requirement."
"Access certification reviews are scheduled annually, but industry best practices recommend quarterly reviews for high-risk systems."
TeamStore privilege elevation pattern
TeamStore benchmarking flagged similar SaaS deployments where unchecked admin invitations led to lateral movement.
1 control
TeamStore
Relevance · 82%
Overly narrow endpoint hardening scope (Laptops only)Edit Suggested
Endpoint hardening program excludes several asset classes (mobile devices, Linux servers) reducing unified baseline enforcement and increasing unmanaged configuration drift.
1 control
Document
Relevance · 79%
Data encryption at rest incomplete
Sensitive data in databases and file shares is not consistently encrypted, risking data exposure.
1 control
AI
Relevance · 78%
Legacy firewall rules reintroduced
Historical TM+ findings show decommissioned firewall rules recurring across quarterly releases.
1 control
Historical
Relevance · 76%
Logging gaps for cloud workloads
Cloud audit trails are not retained for the required 12 months, limiting forensic readiness.
1 control
AI
Relevance · 74%
Recurring privileged exception approvals
Historical TM+ remediation logs show quarterly reissuance of the same privileged account exceptions without compensating controls.
1 control
Historical
Relevance · 73%
Third-party risk assessment incomplete
Vendor risk assessments are not performed for all critical suppliers, creating supply chain vulnerabilities.
1 control
Document
Relevance · 72%
Document excerptsVendor Management Policy.pdf
"All critical vendors must undergo annual security risk assessments. Current coverage is only 40%."
"Assessment framework should include cybersecurity controls evaluation."
Backup integrity verification missing
Backup restoration testing is not performed regularly, risking data recovery failures during incidents.
1 control
AI
Relevance · 69%
Retention policy exceptions for database exportsEdit Suggested
Ad-hoc data export processes bypass retention tagging, creating persistent copies of sensitive data outside controlled storage.
Document
Relevance · 68%
Benchmark gap: SaaS session timeout variance
TeamStore tenant comparisons highlight that similar organisations enforce 15-minute idle timeouts, while this deployment allows 60 minutes.
1 control
TeamStore
Relevance · 68%
Incident response plan outdated
Incident response procedures haven't been updated to reflect current threat landscape and technologies.
1 control
AI
Relevance · 67%