Skip to content
English
More support Sign in
Contact us
  • There are no suggestions because the search field is empty.

Unify - Insights

The Unify Insights view can be divided into the following explanation sections to better understand the data presented within the overall view.

  1. General
  2. Insights
  3. Insight Variations
  4. How to Leverage Unify Insights
  5. Muting Insights
  6. Recommended Next Steps

🖥️General: 

Insights are the converted summarization of raw data that is fed into Unify from your various tools. These insights will empower you to evaluate, plan an action, and monitor for behavior change after engaging with your end users. There are two types of Insights surfaced in Unify, Behaviors and Events.

Behaviors: 

Behaviors are actions that an individual has actually taken. These are things that are within the control of the individual, and there are both positive and negative behaviors that an individual can take. For example, if an individual opens and clicks on a simulated phish this would indicate that they are prone to take risky behaviors

Events: 

Events surface data that occurs in relation to an individual, but the occurrence is likely outside of the individual's control. For example, being targeted by phishing emails brings a level of risk to the individual, but they cannot control that they have been targeted.

By sorting the "Identities Detection" column, you can identify the events that have been identified most often within that Insight. 

📈Insight Categories

All Behaviors and Events are broken down into 5 Business Risk categories:

  • Account Compromise
  • Compliance
  • Data Loss
  • Malware
  • Phishing & Email Vulnerability

📊Insight Variations:

Insight variations allow you to:

  • Visualize scaling risk by showing activity counts over defined time periods.
  • Take automated or manual action based on activity-based thresholds.
  • Tailor insights to better fit organizational risk tolerance and policies.

image (18)

💡Example: An insight like "Clicked link on simulated phish" includes variations for "2 or more in 90 days" and "3 or more in 180 days," each representing escalating risk.

 
Want to create a new custom insight variation? It is easy to do:
  1. Navigate to an individual Insight page.
  2. Select the ✏️ Edit icon.
  3. Set your activity threshold and time period.
  4. Save your new variation.

🕰️ Newly added variations will begin to populate the next day (about 24 hours after creation). Once created, a custom insight variation will begin populating data based on any new activity.

⬇️For a detailed breakdown of all the insights and integrations Unify Insights supports, please download this file

💡For an Insight to occur, a threshold of activities needs to happen before it is flagged as an Insight. Thresholds vary from one activity to another based on the severity of the activity and the total number of the same activities logged, such as Multiple Phish Clicked insight that is triggered upon 3 or more phish clicked within 90 days. 

🔬How to Leverage Unify Insights:

Once an Insight has been compiled, that insight will run through a Probabilistic Graph Model and return with a Human Risk Score that will be indexed into one of five groups that make up the Human Risk Index (HRI):

  • High Risk
  • Somewhat Risky
  • Neutral
  • Somewhat Vigilant
  • High Vigilance

With the Human Risk Index, you will know what groups to focus and enact action plans on to continue to monitor and push towards vigilance.

💡Example: You notice an insight for Stale Credentials and Shared Credentials. You can push a script for a password reset upon the user(s) next login and assign Training on Resetting/Reusing Passwords. 


You will also be able to see what type of behavior/activities the more vigilant groups partake in. This can help in creating action plans to assist in moving the needle towards vigilance for the non-vigilant groups.

📝Another example: You want to check Security posture towards Phishing Emails. You set up a Phishing Simulation Campaign and assesses results over time. Unify Insights is able to aggregate this data and give you the ability to put an Action Plan in motion in an attempt to mitigate risk. After the Action Plan has taken place, you can then assess the outcome of the Action plan and determine whether or not it was effective through another Phishing Simulation. 

These are just two of many possible outcomes possible through a Human Risk Management solution. Remember: a Human Risk Management solution enables you to take a focused approach to risky behavior by: 

  1. Engaging the End-User
  2. Quantifying Data
  3. Managing Risk

Repeat. 

 

🔇Muting Insights

In your HRM journey, you may find some insights aren’t relevant, so we added the option to mute them. This way, they won’t affect user risk scores or show any impact.

To mute an Insight:

1. Select Insights from the left-hand menu

2. Click the Behavior & Event Insights tab next to Power Insights.

3. Click the Overflow menu icon next to the Insight you would like to mute.

4. Select Mute.

This will take effect the next day, after the next round of risk scores are calculated. 

You can Unmute the action in the same way.

ℹ️ Power Insights cannot be muted, since they don’t impact HRI directly.

Recommended next Steps➡️: