# Risks & Threats

The Risks & Threats area is in a security-focused perspective to examine the identities and their posture issues, as well as potential threats.

In this area, we can find a few different views:

1. **Exposures** - Security Posture Issues & As well as remediation solutions (in product or external).
2. **Threats** - Identity Threats that were detected in the environment.
3. **Access Review -** A lean way to review who has access to something, and manage the reviewing lifecycle to comply with regulations and government policies.
4. **Compliance** - a compliance perspective including the current status of the environment when being measured against NIST, SOC, and other frameworks.

<figure><img src="/files/henhWX3Wrsvgpll3DaHy" alt=""><figcaption><p>Risk &#x26; Threat Area, Rezonate</p></figcaption></figure>

***

### Exposures

Rezonate checks hundreds of security controls that can be customized based on the organization's preferences. the findings and their lifecycle can be found under the Exposures page which includes everything that is needed to quickly understand and remediate a risk.

On this page, we can review the different risks that were found in the environment, slices by category, and with agile filtering capabilities to filter by area, platforms, or detection time.

<figure><img src="/files/NXiBagpRbYcXlxz8Vv0v" alt=""><figcaption></figcaption></figure>

By clicking on each exposure we can see a list of identities that suffer from it, including their risk level, which may be affected by the blast radius of the specific identity or other attributes to help with the prioritization process.

<figure><img src="/files/9LZz56rkpFsrwvDzrui6" alt=""><figcaption><p>Example for Risk Drildown - MFA Issues for EntraID users</p></figcaption></figure>

By Clicking an issue, we can see the full information, including its Identity storyline as well as potential remediations (that can be applied automatically from Rezonate or externally)

<figure><img src="/files/nWk56QdYE3mnXFC03gaj" alt=""><figcaption><p>Issue Details</p></figcaption></figure>

It is also possible to create Jira issues to manage the process of remediating these issues externally through a seamless integration, by clicking the Create Issue button.

<figure><img src="/files/eDQRNRzOSazIIIja0qV4" alt=""><figcaption></figcaption></figure>

<figure><img src="/files/32N1jz5QXAOjk7fZdVEs" alt=""><figcaption><p>Remediation for the detected Risk</p></figcaption></figure>


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://kb.rezonate.io/platform-tour/risks-and-threats.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.