User Risk Scores
Overview
User Risk Scores help identify users whose activity may require review based on risk signals.
What this feature does
They summarize risk factors such as failed logins, new country access, unusual hours, sensitive actions, bulk actions, or other suspicious patterns depending on the plugin configuration.
Why it is useful
- It helps prioritize security reviews.
- It gives administrators a user-focused risk view.
- It connects authentication behavior with activity behavior.
Who should read this?
RISE Admin, Security Officer, System Owner.
Where to find it
Rise Audit Pro → User Risk Scores.
How to use it
- Open User Risk Scores.
- Review users with high or medium risk.
- Open the risk factor details.
- Investigate related Auth Log and Activity Log events.
- Mark or document the outcome if your workflow requires it.
Example workflow
A user receives a high risk score after repeated failed logins and sensitive record changes from a new country. The security officer reviews the account and resets credentials if needed.
Screenshot
Screenshot required
Capture from: Rise Audit Pro → User Risk Scores
Capture from: Rise Audit Pro → User Risk Scores
Common mistakes
- Treating a score as a final judgment.
- Ignoring the risk factors behind the score.
- Not reviewing high-risk users regularly.
Related articles
- Risk Factors Explained
- How to Investigate a High-Risk User
- Suspicious Users
