Applies to: Global Org Admins, IT Admins and Compliance Admins
SecurityHub is a unified cloud platform for chief information security officers (CISOs), compliance officers and IT teams to configure security policies to protect their users, data and Intralinks environments. SecurityHub gives customers insight into user activity and provides proactive risk mitigation and insider threat assessment. SecurityHub covers and oversees all Intralinks products.
SecurityHub features
The features that are available to you are based on your organization's contract with Intralinks and your role in SecurityHub. The following features are available in SecurityHub:
- Security Dashboard - The Security Dashboard consolidates and communicates critical information for monitoring and assessing the Intralinks ecosystem's security posture in near real-time.
- Security and compliance reports - Security and compliance reports show information about which users have logged in and where they have logged in from. Reports can be run immediately as needed or schedules to run at a particular date and time.
- Identity+ - Identity+ enables your organization to stay secure and compliant when using shared/team/group accounts on Intralinks by creating an account with multiple users.
- Admin management - Admin management is where admins can add and delete other admins and edit admin roles. There are several levels of admin roles that are available in the SecuirtyHub. These roles determine the features that are available to users assigned these roles.
- Single sign-on (SSO) - Intralinks SSO enables users to securely and seamlessly authenticate with the Intralinks platform using SAML2.0 or OIDC.
- Access control at login - This option is for non-SSO customers. It ensures that each user has appropriate access to log into Intralinks. It also ensures that access is blocked to users that are not given access to Intralinks products. Access can be controlled by both geographic location and by IP address.
- MFA - This option is for non-SSO customers. It determines whether users must authenticate using a verification code and how often they will be asked to enter a code.
- Domain Management - Domain management lets you view the domains that are part of your organization, and make a request to add additional domains.
- User Management - User management lets you suspend and unsuspend users.
- Admin Portal - The Admin Portal is where your organization's admins can manage security policies and monitor the activities of your users.
SecurityHub roles
All admin roles have access to all features that are available to your organization, however, not all roles can perform all actions, such as editing and deleting items. The following roles are available in SecurityHub:
Global Org Admin
This role grants the highest level of access for overseeing all aspects of the Admin Portal and user access. This role can access all features and configure, modify, and delete access to all features including configurations made by other users.
- Security Dashboard - This role can access all features.
- Security and compliance reports - This role can access all features, including modifying and deleting schedules created by other users.
- Identity+ - This role can access all features.
- Admin management - This role can modify and remove other users but cannot modify or remove themselves. This role is the only role that can invite and assign another Global Org Admin to the organization.
- Single sign-on (SSO) - This role can access all features, including modifying and deleting connectors created by other users.
- Access control at login - This role can access all features, including modifying and deleting rules created by other users.
- MFA - This role can access all features, including modifying and deleting rules created by other users.
- Domain Management - This role can access all features, including modifying and deleting domain requests created by other users.
- User Management - This role can suspend and unsuspend users.
IT Admin
This role is for admins that will perform general tasks related to user security. This role has access all features but can only modify and delete configurations that they created.
- Security Dashboard - This role can access all features.
- Security and compliance reports - This role can access all features. This role cannot modify or delete schedules created by other users.
- Identity+ - This role can access all features.
- Admin management - This role can modify and remove other IT Admins and Compliance Admins, but cannot modify or remove themselves or the Global Org admin users. This role can invite other IT Admins to the organization.
- Single sign-on (SSO) - This role can access all features, but cannot modify or delete connectors created by other users.
- Access control at login - This role can access all features, but cannot modify or delete rules created by other users.
- MFA - This role can access all features, but cannot modify or delete rules created by other users.
- Domain Management - This role can access all features, but cannot modify or delete rules created by other users.
- User Management - This role can suspend and unsuspend users.
Compliance Admin
This role is for admins that will perform compliance-related activities, such as reviewing policies, reports and audits. This role has view-only access.
- Security Dashboard - This role can access all features.
- Security and compliance reports - This role can access all features. This role cannot modify or delete schedules created by other users.
- Identity+ - This role can access all features.
- Admin management - This role has view-only access.
- Single sign-on (SSO) - This role has view-only access.
- Access control at login - This role has view-only access.
- MFA - This role has view-only access.
- Domain Management - This role has view-only access.
- User Management - This role has view-only access.