UpGuard offers custom notifications that can be configured by severity, helping you respond to new findings about your organization and your monitored vendors in line with your risk management program.
The overall process for creating these notifications is the same as other custom notifications, covered in detail in How to create custom notifications. In addition to selecting custom severity thresholds, you can include conditional logic based on other properties like labels and portfolios.
To begin creating custom notifications, navigate to Settings > Notifications then select Create notification.
Custom notifications for risks
Findings that impact your score and show up in Risk Profile are classified as "risks." You can create notifications based on risk severity level for both your assets and your vendors. The severity levels for risks are informational, low, medium, high, and critical, and the notification options are:
Risk added (X severity or greater)
Risk resolved (X severity or greater)
Vendor risk added (X severity or greater)
Vendor risk resolved (X severity or greater)
Custom notifications for vulnerabilities
For vulnerabilities, custom notifications can be configured based on 1-10 CVSS scores using the most recent CVSS scoring supported by the NVD. As with notifications for detected risks, these can be configured to alert you to vulnerabilities detected for you or your vendors. The options are:
Vulnerability detected (X CVSS or higher)
Vulnerability resolved (X CVSS or higher)
Vendor vulnerability detected (X CVSS or higher)
Vendor vulnerability resolved (X CVSS or higher)
