Assign controls as in progress or risk accepted
this quarter
J
Josh Brodbent
Currently, we have some legacy equipment that we allow to bypass conditional access as long as it is from within our network, and we will apply those exceptions to those policies. They are extremely limited in scope, and would make the client compliant in my opinion. We should be able to mark some of these controls as risk accepted, in progress, or complete with an asterisk, instead of it just auto-detecting based on the policy.
S
Scott Riley
marked this post as
this quarter
S
Scott Riley
marked this post as
future planned
S
Scott Riley
Hey Josh, definitely. We know that different clients have different quirks and so we have Exceptions / Exclusions as a roadmap item. I'll merge this suggestion into that item once I've got it listed here in the Feedback portal for us. Thanks for checking out ISPM and keep feeding back!