Sonrai Security Features

Management (3)

Governance: Allows users to create, edit, and relinquish user access privileges.
Logging and Reporting: Provides required reports to manage business. Provides adequate logging to troubleshoot and support auditing.
API / Integrations: Application Programming Interface - Specification for how the application communicates with other software. API's typically enable integration of data, logic, objects, etc. with other software applications.

Anomaly Detection: Constantly monitors acivity related to user behavior and compares activity to benchmarked patterns.
Data Loss Prevention: Stores data securely either on premise or in an adjacent cloud database to prevent loss of data at rest.
Security Auditing: Analyzes data associated with security configurations and infrastructure to provide vulnerability insights and best practices.
Cloud Gap Analytics: Analyzes data associated with denied entries and policy enforcement, giving information of better authentication and security protocols.

Compliance Monitoring: Monitors data quality and sends alerts based on violations or misuse.
Anomoly Detection: Constantly monitors acivity related to user behavior and compares activity to benchmarked patterns.
Data Loss Prevention: Stores data securely either on premise or in an adjacent cloud database to prevent loss of data at rest.
Cloud Gap Analytics: Analyzes data associated with denied entries and policy enforcement, giving information of better authentication and security protocols.
Compliance Monitoring: Monitors data quality and send alerts based on violations or misuse.
Risk Analysis: Identifies potential network security risks, vulnerabilities, and compliance impacts.
Reporting: Creates reports outlining log activity and relevant metrics.

Policy Enforcement: Allows administrators to set policies for security and data governance.
Auditing: Analyzes data associated with web traffic and site performance to provide vulnerability insights and best practices.
Workflow Management: Creates new or streamlines existing workflows to better handle IT support tickets and service.
Policy, User, and Role Management: Creates access requirements and standards and establishes user, roles, and access rights.
Approval Workflows: Allows administrators to approve or reject access changes to using defined workflows.
Automated Provisioning: Automates provisioning and deprovisioning to reduce the amount of administrative manual work.
Bulk Changes: Reduces manual administrative work.
Centralized Management: Manages identity information from on-premise and cloud applications.
Self-Service Access Requests: Automatically allows access if users meet policy requirements.
Security Automation: Streamline the flow of work processes by establishing triggers and alerts that notify and route information to the appropriate people when their action is required within the compensation process.
Security Integration: Integrates additional security tools to automate security and incident response processes.
Multicloud Visibility: Allows users to track and control activity across cloud services and providers.

Multi-Factor Authentication: Provides support for Multi-Factor authentication, so users are required to provide multiple factors to authenticate.
Single Sign-On: Provides a single access point for users to access multiple cloud products without multiple logins.
BYOD support: Enables users to bring-your-own-device to access company applications.
Password Vault: Stores credentials and passwords in a secure vault. Eliminates hard-coded passwords. Hides passwords from users.
Centralized management: Ensures that credentials are centrally stored (in a secure vault) and when changed, that systems remain connected.
Role-based security: Allows privileges based on roles, such as business unit or other factors.
Live notifications: Configure which events will trigger a notification to prevent privileged access abuse in real-time.
Live session recording & playback: Offers live session recording and playback for compliance and auditing purposes.
Hide passwords: Offers the option to hide passwords when sharing with users, such as contract workers
Temporary, time-limited privilege: Allows for temporary privileges for a defined task or period of time, to reduce the risk of credential abuse.

Audit Logging: Provides audit logs for compliance reasons.
Activity Logging: Monitors, records, and logs both real-time and post-event activity.
Anomaly Detection: Detects abnormal user behavior to mitigate risks.
Investigate: Investigate identity threats with contextual user information.
Monitoring: Monitor & detect malicous identity and privileges activity
Misconfigurations: Identify identity-related misconfigurations.
Integrate: Offers integrations to identity store providers.
Visability: Provide full coverage of identity estate with granular detail.

Usage Monitoring: Tracks infrastructure resource needs and alerts administrators or automatically scales usage to minimize waste.
Database Monitoring: Monitors performance and statistics related to memory, caches and connections.
API Monitoring: Detects anomalies in functionality, user accessibility, traffic flows, and tampering.
Activity Monitoring: Actively monitors status of work stations either on-premise or remote.

DLP Configuration: Offers data loss prevention tools to protect data from leaving the environments it is allowed to.
Configuration Monitoring: Monitors configuration rule sets and policy enforcement measures and document changes to maintain compliance.
Unified Policy Management: Allows users to track and control security policies across cloud services and providers.
Adaptive Access Control: Provides a risk-based approach to determining trust within the network.
API / Integrations: Application Programming Interface - Specification for how the application communicates with other software. API's typically enable integration of data, logic, objects, etc. with other software applications.

Threat Hunting: Facilitates the proactive search for emerging threats as they target servers, endpoints, and networks.
Vulnerability Scanning: Analyzes your existing cloud, network, and IT infrastructure to outline access points that can be easily compromised.
Vulnerability Intelligence: Stores information related to new and common vulnerabilities and how to resolve them once incidents occur.
Risk-Prioritization: Allows for vulnerability ranking by customized risk and threat priorities.

Workload and container security: Scans containers, workloads, and kubernetes clusters for any misconfigurations or vulnerabilities.
Threat detection and response: Monitor live environments for anomalies, risks and threats to ensure rapid response.
DevSecOps Integrations: Integrates with CI/CD pipelines to detect security risks early in the development life cycle.
Unified Visibility: Consolidate all security data across the tech and cloud stacks into one dashboard.