Update identity-security-initiative.md

DeCohen · web-flow · commit fb95a5788309 · 2025-04-28T15:02:47.000+03:00
diff --git a/ATPDocs/identity-security-initiative.md b/ATPDocs/identity-security-initiative.md
@@ -16,40 +16,17 @@ Identity security is the practice of protecting the digital identities of indivi
 - Your organization must have a Microsoft Defender for Identity license.
 - [Review prerequisites and permissions needed](/security-exposure-management/prerequisites) for working with Security Exposure Management.
 
-## View Identity security recommendations 
-
- The Security recommendations tab displays a list of prioritized remediation actions related to your identity security posture. Each recommendation is evaluated for compliance and mapped to its corresponding risk impact, workload, and domain. This view helps you triage and take action based on urgency and business relevance.
-
-:::image type="content" source="media/identity-security-initiative/screenshot-showing-the-security-recommendations-page.png" alt-text="Showing showing the security recommendations page":::
-
+## View Identity Security Initiatives
 1. Navigate to [Microsoft Defender portal](https://security.microsoft.com/) 
 1. From the Exposure management section on the navigation bar, select Exposure insights **>** Initiatives to open the Identity Security page.
-1. Sort the recommendations by any of the headings or filter them based on your task needs. Sorting includes all of the headers:
-
-
-| **Column**             | **Description**                                                                 |
-|------------------------|---------------------------------------------------------------------------------|
-| **Name**               | The name of the recommended action (for example, *Configure VPN integration*, *Enable MFA*). |
-| **State**              | Indicates whether the recommendation is *Compliant* or *Not Compliant*.         |
-| **Impact**             | The security impact level (Low, Medium, or High) of implementing the recommendation. |
-| **Workload**           | The Microsoft service area the recommendation applies to (for example, Defender for Identity, Microsoft Entra ID). |
-| **Domain**             | The security domain (for example, identity, apps) associated with the recommendation.   |
-| **Last calculated**    | The most recent time the recommendation's status was evaluated.                 |
-| **Last state change**  | When the recommendation’s compliance state last changed.                        |
-| **Related initiatives**| Number of security initiatives impacted by this recommendation.                 |
-| **Related metrics**    | Number of security metrics that this recommendation contributes to.             |
-
-Security Exposure Management categorizes recommendations by compliance status, as follows:
-
-- **Compliant**: Indicates that the recommendation was implemented successfully.
-- **Not complaint**: Indicates that the recommendation wasn't fixed.
 
 ## Review security metrics
 
 Metrics in security initiatives help you to measure exposure risk for different areas within the initiative. Each metric gathers together one or more recommendations for similar assets.
 Metrics can be associated with one or more initiatives.
 
 On the Metrics tab of an initiative, or in the Metrics section of Exposure Insights, you can see the metric state, its effect, and relative importance in an initiative, and recommendations to improve the metric.
+We recommend that you prioritize metrics with the highest impact on Initiative Score level. This composite measure considers both the weight value of each recommendation and the percentage of non-compliant recommendations.
 
 :::image type="content" source="media/identity-security-initiative/screenshot-of-the-security-metrics-page.png" alt-text="Screenshot showing the security metrics page":::
 
@@ -59,13 +36,39 @@ On the Metrics tab of an initiative, or in the Metrics section of Exposure Insig
 |**Metric name**    | The name of the metric.        |
 |**Progress**   |Shows the improvement of the exposure level for the metric from 0 (high exposure) to 100 (no exposure).         |
 |**State**   | Shows if the metric needs attention or if the target was met.       |
-|**Affected assets**   | The number of affected assets within the metric.       |
 |**Total assets**  | Total number of assets under the metric scope.        |
 |**Recommendations**   | Security recommendations associated with the metric.        |
 |**Weight**    | The relative weight (importance) of the metric within the initiative, and its effect on the initiative score. Shown as High, Medium, and Low. It can also be defined as Risk accepted.        |
 |**14-day trend** | Shows the metric value changes over the last 14 days.        |
 |**Last updated** | Shows a timestamp of when the metric was last updated.
 
+> [!NOTE]
+> The Affected assets experience is not fully supported during the Preview phase.
+
+## View Identity security recommendations 
+
+ The Security recommendations tab displays a list of prioritized remediation actions related to your identity security posture. Each recommendation is evaluated for compliance and mapped to its corresponding risk impact, workload, and domain. This view helps you triage and take action based on urgency and business relevance.
+
+:::image type="content" source="media/identity-security-initiative/screenshot-showing-the-security-recommendations-page.png" alt-text="Showing showing the security recommendations page":::
+
+Sort the recommendations by any of the headings or filter them based on your task needs. 
+
+| **Column**             | **Description**                                                                 |
+|------------------------|---------------------------------------------------------------------------------|
+| **Name**               | The name of the recommended action (for example, *Configure VPN integration*, *Enable MFA*). |
+| **State**              | Indicates whether the recommendation is *Compliant* or *Not Compliant*.         |
+| **Impact**             | The security impact level (Low, Medium, or High) of implementing the recommendation. |
+| **Workload**           | The Microsoft service area the recommendation applies to (for example, Defender for Identity, Microsoft Entra ID). |
+| **Domain**             | The security domain (for example, identity, apps) associated with the recommendation.   |
+| **Last calculated**    | The most recent time the recommendation's status was evaluated.                 |
+| **Last state change**  | When the recommendation’s compliance state last changed.                        |
+| **Related initiatives**| Number of security initiatives impacted by this recommendation.                 |
+| **Related metrics**    | Number of security metrics that this recommendation contributes to.             |
+
+Security Exposure Management categorizes recommendations by compliance status, as follows:
+
+- **Compliant**: Indicates that the recommendation was implemented successfully.
+- **Not complaint**: Indicates that the recommendation wasn't fixed.
 
 ## Set target scores
 
