Uploading proof of completion
J
Janine S.
In case the Secfix Agent does not recognize applying one of the security requirements, users want to demonstrate compliance with the security requirements (e.g. PW Manager) & would like to have the option to upload proof. For example, they could provide a screenshot showing that the necessary configurations are in place.
Use case:
A company with strict BYOD policies allows employees to use personal devices but does not require installing an agent. To verify compliance, employees can manually confirm security settings (e.g. PW manager) and upload screenshots as evidence. This ensures compliance verification without needing automated detection.
Created by Elżbieta Żurakowska
Grigory Emelianov
Hi, we were recently considering this feature but we found a few potential UX issues in the workflow:
- Without Secfix agent, if they want to upload evidence about device compliance (password manager, encryption, etc.), employees will need to enter at 1. least device name, 2. operation system version and 3. serial number of the device correctly. Serial number is critical here because there is some logic behind it. Would you trust your employees to provide the correct Serial Number? Or would you upload this for every employee as admin?
Also currently, Computers page shows only real monitoring data synced from the devices. If we add manually monitored devices there, you'll loose your single source of truth for device monitoring in case data provided by employees is not accurate. Hence, would you like us to add the manually added devices there (accept risk of lower accuracy) or did you expect only the computer automated checks to consider this data and not the computers page?