Exception Workflow in Security Posture Management (SPM)
SPM now supports structured exception handling for posture findings.
With this release:
- Suppress findings via Accepted Risk (time-bounded) or Excepted from Evaluations (permanent)
- Enforce mandatory justification on every exception
- Review decisions in the immutable Activity Timeline
- Filter by workflow state: Untriaged, Investigating, Flagged, Accepted, Excepted
Exception Workflow replaces manual tracking with a built-in, audit-ready process inside SPM.
Available now for SPM paid customers on M365.
