This guide will walk you through the process of removing risks that are found in your cloud environment.
STEP ONE:
Login to your instance.
STEP TWO:
Navigate to the Audit & Control page, and select the Name of your desired Cloud Environment. (Global Views will show all accounts in your domain, while filtered views will show only users for that view)
STEP THREE:
Select the Risks tab across the top of the page.
STEP FOUR:
This page will display all Risks within your environment. However they can also be fine tuned to only contain information you want to see, to do this simply select the Filters button on the right side of the screen.
STEP FIVE:
Select the filters you wish to apply.
Risk Type: The type of risk, PCI, PII, Profanity etc.
Risk Scanned Time: The date range of the scan that found the risks.
Shared Status: If the files containing risk have been shared or not.
Files Shared: The direction of the file shares, From Outside Domains, To Outside Domains, or Within Domain.
Shared Via Link: If the file has been shared via a link, and with what permissions it was shared with.
File Source: If the risk was found in Drive, Email Attachment, Email body, or Team Drive.
STEP SIX:
Once you have applied the filters you would like (if any) the risks will be displayed in the details window.
STEP SEVEN:
Actions:
The actions column allows you to take actions for each specific risk.
Quarantine: Places the file in a secure bucket that allows you to decide what action if any needs to be taken for the file
Download: Allows you to download the risk file for further inspection. For instance if a social security number is listed, you are able to see in what context the risk occured.
Delete: Deletes the file entirely and removes it from your cloud environment.
FOR MORE INFO:
Please see the Investigating Risks section.