Okta Identity Security Posture Management release announcements

Workflows templates for automatic issue remediation

Use Okta workflows templates to respond to security issues detected by Okta Identity Security Posture Management (ISPM). These templates are automated workflows that help minimize security risks associated with privileged accounts, compromised credentials, and misconfigurations. You can trigger workflows for the following templates using ISPM event hooks:

• ISPM Event Routing Flow

• Suspend Okta Account as a Response to ISPM Detection

• Disable Microsoft Entra ID Account as a Response to ISPM Detection

• Deactivate Salesforce User as a Response to ISPM Detection

• Suspend Google Workspace User as a Response to ISPM Detection

• Okta - Add User to a Group as a Response to ISPM Detection

• Entra ID - Add User to a Group as a Response to ISPM Detection

• Okta - Reset User Password Upon Next Login as a Response to ISPM Detection

See Configure an event hook and Okta Workflows templates for Identity Security Posture Management

New issue detection for AI agents linked to Salesforce account

When multiple AI agents are linked to the same user account, all of the AI agents are granted the same set of permissions, even if they don't need it. This may lead to over-privileged access and expand the attack vector's threat surface for your org. One compromised agent risks all; one permission change affects all. See Supported detections.

Increased visibility for multi-account AWS apps

The security posture analysis that ISPM does for Okta apps that provide access to multiple AWS accounts has been enhanced. This enhancement gives you a centralized view of the security posture across all linked AWS accounts, aggregating key data such as MFA enforcement status and user risk detections.

Improved MFA Analysis for Atlassian Jira and Box

The improved ISPM Multi-Factor Authentication (MFA) analysis provides deeper visibility into your Atlassian Jira and Box environments. This enhancement helps security teams identify potential authentication gaps, such as ensuring both federated and local user accounts in Jira and Box are properly protected by MFA.

Quick search suggestions

The ISPM search bar now features quick search suggestions for high-impact security queries. This provides one-click access to pre-built searches for identifying configurations such as service accounts, all super admins, admins who can bypass MFA, or applications with low MFA requirements.

ISPM console improvements

• The User Access Graph now includes a search function to locate specific apps within the visual map. This allows you find apps quickly and view its associated access groups and risks, accelerating investigations into a user's security posture.

• The dark mode theme has been enhanced with a refined color palette and improved contrast. These changes improve visual comfort and the readability of on-screen elements.