Available on SpinSPM & SpinOne subscriptions.
The Application Policy type is a critical element of our product, designed to identify, assess, and manage applications and extensions based on predefined criteria. It offers actions such as blocklisting, allowlisting, notifications, access revocation, and user suspension to maintain security and compliance within your environment.
Let's take a deep dive into the structure of the Application Policy.
GENERAL
In the General section, you can fill in basic policy information such as the policy name, category, severity and a brief description of its intended purpose. This will help you to classify incidents and separate different policies from each other.
CONDITION
In the Condition section you will specify events that will trigger the policy. For the Application Policy type specifically, you can choose from many events such as Application Risk Score, Category, Scopes of Permissions requested, Access Last Granted and much more.
You can combine multiple separate conditions together. Once you combine conditions, it will turn into an AND policy, and the policy will only be triggered when all separate conditions have been met.
When you enter different values for the same condition, that condition will be met when one of those events is detected. See the below image for more clarification.
ACTION
In the Action section you will specify the actions that will be taken when this policy has been triggered. For the Application Policy type specifically, you can choose from many actions such as Blocklisting/Allowlisting the application, revoking its access and much more.
Every action placed in the Action section will be performed if the conditions of the policy have been met.
SCOPE & EXCEPTION
Lastly, you can specify who the policy should apply to in the Scope & Exception section. You can have the policy apply to everyone, or to specific Groups and users. This will give you flexibility in creating different policies for different teams within your company.
Now you can create Application policies! Remember, that you can create as many policies as you'd like with different conditions, actions and scope & exceptions.
If you have any questions or would like to learn more, please reach out to us at support@spin.ai.