AnDREa - Organization | Information Security

Information Security
Using Azure Security Score
First version: 2023-01-27 Last updated: 2024-03-21 Last update(s): Some more detailed explanations. Will be adding more recommendations over time. The Azure Security Score is a valuable tool to identify, understand and improve the security posture ...
Account Sharing
Summary Do not share accounts, because: The one approving MFA is personally liable for the actions of others It increases the risk for phishing attacks You are not compliant with your GDPR and ISO27001 requirements Audit/logging requirements Ensuring ...
Identity Protection - Risky users
anDREa monitors and evaluates for "Users at Risk" warnings. User at risk detected We detected a new user with at least high risk in your andreanl directory. This might be because we noticed suspicious account activity or we found their emails and ...
Overview of email notifications
This article outlines when email notifications are send to whom. Type Event Email send to Workspace Workspace creation Accountable User Invitation User Data ingress Upload ready (large files) Uploader Data egress Request Privileged Members (Owners) ...
Virus Scanning
All Windows VMs have Windows Defender enabled. On access the threat will be assessed and in case the file is compromised, the user will be warned and the file will be deleted. Example Get test files from https://www.eicar.org/?page_id=3950 (own risk) ...
Sign-in and Audit Logs
Introduction By default 30 day rolling sign-in and audit logs are created in order to trouble shoot, provide evidence, improve the quality of myDRE. Access to sign-in and audit logs The Access Control Policy (A.9.1.1) applies. Logs will not be shared ...
Event logging - A.12.4.1
Introduction anDREa is committed to protecting the security of its business information in the face of incidents and unwanted events and has implemented an Information Security Management System (ISMS) that is compliant with ISO/IEC/27001:2013, the ...

Popular Articles
Activating your new @mydre.org account
Before you can access your DRE workspace(s) at mydre.org, you need to activate your @mydre.org account. Below, we explain the steps in this activation process, along with screenshots for illustration. Prerequisite: your new @mydre.org username, along ...
Proxy configurations Anaconda
First version: 2022-10-31 Latest version: 2025-01-28 Last change(s): Clarification in the introduction; clarifying instructions; added screenshots. This is a community effort. The article was created by the anDREa Support Team in their spare time. If ...
launch new end-user portal
Dear myDRE users, We have some exciting news to share with you! We have launched a brand new and improved user interface that will make your myDRE experience even better. The new platform is more streamlined and user-friendly, and we can't wait for ...
Is NIS2 on the radar of your organisation?
Is NIS2 on the radar of your organisation? At anDREa, we are heavily invested in the security of our platform and your data in the interest of all stakeholders. Since September 2022, we are ISO27001 certified and have passed the first control audit ...
UPDATE
22nd May 2024 Hello, myDRE Platform Users! Due to the introduction of several new features, we have decided to prioritize deploying the data transfer improvements to production first. Following this, we will proceed with the Activity Feed. We will ...

AnDREa - Organization | Information Security | Help Center

Information Security

Using Azure Security Score

Account Sharing

Identity Protection - Risky users

Overview of email notifications

Virus Scanning

Sign-in and Audit Logs

Event logging - A.12.4.1

Popular Articles

Activating your new @mydre.org account

Proxy configurations Anaconda

launch new end-user portal

Is NIS2 on the radar of your organisation?

UPDATE