Security
Monitor and improve your workspace security posture
87
/ 100
Security Score
Good — 3 recommendations
Enable MFA for all team members
2 team members (Eva Rossi, Frank Liu) don't have MFA enabled.
Rotate aging service key
billing-service-prod hasn't been rotated in 127 days. Recommended: every 90 days.
Review open security alerts
12 security alerts are still open and require investigation.
| Device | Location | Last active | IP address | |
|---|---|---|---|---|
MacBook Pro · Chrome 121Current | San Francisco, CA | Active now | 104.18.7.42 | |
iPhone 15 · Safari | San Francisco, CA | 2 hours ago | 104.18.7.42 | |
Windows · Firefox 122 | Austin, TX | 3 days ago | 98.43.120.7 |
| Key name | Age | Last rotated | Status | |
|---|---|---|---|---|
| billing-service-prod | 127 days | 127 days ago | Rotation due | |
| authz-evaluator | 14 days | 14 days ago | Good | |
| webhook-processor | 45 days | 45 days ago | Good |
Suspended Tenant Access Attempt
investigatingA service key belonging to a suspended tenant is still being used to attempt API calls. The key should be revoked immediately.
Unusual PHI Export Spike
openA 340% increase in patient data export attempts was detected over the past 6 hours from a single service account. The deny policy blocked all attempts.
Identity Provider Sync Failure
openThe Okta integration for TechNova APAC has not synced for over 11 hours. Tokens may become stale and access decisions unreliable.
Wildcard Scope Service Key Detected
openA service API key with wildcard scope (*) was detected in use. This violates the principle of least privilege and should be remediated.