Introduction
SAFE allows customers to accept the risk associated with specific findings. This feature is useful when organizations have justified business or technical reasons not to remediate a particular finding.
For example, findings from AWS or SaaS integrations where compensating controls are in place.
What is "Mark as Accepted"?
Mark as Accepted is an action that lets you:
Acknowledge the presence of a finding.
Remove its impact from SAFE’s risk scoring.
Document the business rationale behind the acceptance.
Functional Capabilities
Accept a Finding Across All Assets in a Group
On the Findings page, you can select a finding and choose Mark as Accepted.
This applies to all findings across all assets in the selected group.
Mandatory Rationale
A short explanation must be provided when accepting a finding.
The rationale for transparency and auditability is visible on the Findings page.
Global Acceptance Option
You can accept the finding globally — i.e., across all groups in the organization.
View Accepted Findings
Navigate to the Accepted Findings tab or filter to quickly review all accepted findings within a group.
Reset Status (Unaccept)
You can reverse the action by selecting “Reset Status”, which returns the finding to its original (active) state.
Note
If a finding is accepted for all groups, using “Reset Status” will unaccept it across all groups.
Impact on Scoring
Accepted findings are excluded from group and asset-level scoring.
These findings are treated as Not Applicable (NA) in the scoring engine.