This topic describes the frequently asked questions about the security score. You can click the questions in the following list to quickly view the answers.

What are the priorities of managing security events?

The priorities of managing security events are as follows. A smaller number indicates a higher priority. 1 is the highest priority.
  1. Enable configurations of core features.
  2. Manage AccessKey leaks.
  3. Manage configuration risks in cloud services.
  4. Manage baseline risks.
  5. Manage alerts.
  6. Fix vulnerabilities.

How do penalty points differ between the Advanced and Enterprise editions?

The Advanced edition of Security Center does not support the following features: baseline check, attack analysis, and AccessKey leak detection. Therefore, the rules of penalty points regarding these features do not apply to the Advanced edition.

How do I enable protection against brute-force attacks?

You can enable the anti-brute force cracking feature to block malicious IP addresses that attempt to log on to your servers. This feature helps you improve the security score. We recommend that you enable the anti-brute force cracking feature. For more information, see How do I enable protection against brute-force attacks?.

What are the common methods to manage alerts?

Security Center generates alerts upon potential risks to help you minimize the adverse impact on your assets and improve the security score.For more information, see How do I manage common alerts?.

How does vulnerability severity affect the security score?

If you have Security Center scan for high and medium-risk vulnerabilities and ignore low-risk vulnerabilities, the rules of penalty points do not apply to low-risk vulnerabilities. You can navigate to the Vulnerabilities > Settings page, and only select the high and medium levels. Security Center then only scans for high and medium-risk vulnerabilities.Vulnerabilities settings

How do baseline check levels affect the security score?

If you have Security Center scan for high and medium severity baseline risks and ignore low severity baseline risks, the rules of penalty points do not apply to low severity baseline risks. You can navigate to the Baseline Check > Manage Policies page, and select only the high and medium levels. Security Center then only scans for high and medium severity baseline risks.Baseline check policy management