Identifies administrators who have access to a user's Inbox.
Email Forwarding Rule
Identifies email forwarding rules that users have configured in their respective Inbox.
Email Public Folder
Identifies the email public folders that users within the enterprise can access.
Identifies users who updated their own email retention policies and are no longer using the company default settings.
Identifies if resources within the IaaS environment are encrypted and how they are encrypted.
Inbound Accessible Services
Checks for AWS services that can be accessed from outside. The rules of a security group control the inbound traffic that's allowed to reach the instances that are associated with the security group.
Checks the security posture of a key including key rotation, whether the key is customer managed or not and automated generation of keys.
Multi-factor authentication (MFA)
Identifies users who can login to the SaaS application without Multi-factor Authentication (MFA).
Identifies AMIs that are not trusted by the organization.
Outbound Accessible Services
Checks for services that can exit AWS. The rules of a security group control the outbound traffic that's allowed to exit the instances that are associated with the security group.
Indicates whether SaaS Security API logs the incident as a risk or sends the administrator a notification of the incident.