User Experiences¶

Boost Security is designed to empower your team with robust security capabilities while providing a seamless user experience. Our platform ensures that every user has the appropriate level of access to perform their tasks efficiently and securely, whether you’re inviting new team members or managing user roles.

Users Overview¶

The Users page provides a centralized view of all users within your organization. From this page, you can:

View user details such as status, role, site access, and asset groups
Manage user permissions
Update roles and asset group access
Remove users from the organization

Each user entry includes an actions menu (ellipsis ⋮) on the right-hand side, which contains all available management options.

To manage a user:

Navigate to the Users section of your account settings
Locate the user you want to manage
Click the ellipsis (⋮) menu next to the user

From this menu, you can:

Update Role – Change the user’s assigned role
Update Asset Groups – Modify which asset groups the user can access
Remove – Remove the user from the organization

Invite Users¶

Expand your team's security capabilities by inviting new users to join Boost Security. By default, any invited user is assigned a user role. Adding members to your team is simple and seamless:

Navigate to the User section of your account settings.
Click the Invite Users button at the top-right of the page.
Input the user's email and select the role to be assigned to the user. Click the Send button.

If no role is selected, the user would be assigned the default User role
The invite is sent to the user, who can then click the invitation link to join your organization on Boost Security.
The user's status is tagged Pending Confirmation. You can remove or resend the invite, update the user role, and you can also copy the unique invitation link to share with the user in the case where email has some restrictions, (e.g., strict spam filters), etc.

Boost Security User Roles¶

There are three types of user roles available on Boost Security:

1. Admin Role¶

An Admin on Boost Security has full access and control over the platform's features and settings. This includes all capabilities from the "User Role" plus:

Managing users
Creating API Keys
Managing account settings

2. User Role¶

A User on Boost Security has limited access compared to an Admin user. This includes all capabilities from "Viewer Role" plus read access which include capabilities such as:

Managing integrations
Provisioning and deprovisioning scans
Configuring security policies
Performing triage work, such as suppression and snooze
Enabling Zero Touch Provisioning

3. Viewer Role¶

A Viewer on Boost Security has only read-only access to the platform. Their capabilities include:

Viewing security alerts and reports
Viewing assets, policies and scan history

Managing Site Access and Asset Groups¶

Boost Security allows you to control what parts of the platform a user can access through Site Access and Asset Groups.

Site Access¶

All assets: The user has access to all assets within the organization
Restricted: The user’s access is limited to specific asset groups

You can only restrict Site Access by assigning the user to one or more Asset Groups.

Update Asset Groups¶

To restrict or modify a user’s access:

Open the ellipsis (⋮) menu next to the user
Click Update Asset Groups
Select the asset groups the user should have access to
Save your changes

Once restricted, the user will only be able to view and interact with assets within the selected groups.