Approver roles required for Security Exposure Management Workspace

Release version: Xanadu

Updated August 1, 2025

1 minute to read

You can see the required roles for the approvers in the Security Exposure Management Workspace.

Table 1. Approver roles required for various approval requests
Approval type	Approver roles
False positive approvals	sn_vul.false_positive_approver sn_vul.vulnerability_admin sn_vul.vulnerability_analyst Approvers are required to be in the False Positive Approver user group.
Exception approvals (deferrals)	sn_sec_exception.admin sn_sec_exception.read sn_sec_exception.approver
Unassign approvals	sn_vul.unassign_approver
Risk reduction approvals	sn_vul.exception_approver