Prioritize Risk with Top Actions
The hard part of security isn't finding issues, it's knowing which to fix first. Top Actions is Mondoo's answer: a curated list of the 30 fixes that will most improve your Space Risk Score. Instead of triaging thousands of alerts, you work down a short, ranked list.
What's on the list
Each Top Action is a single finding (misconfiguration, CVE, or vendor advisory) ranked by how much fixing it would reduce risk across the space. The list shows two metrics for each item:
-
Risk Reduction. The exact amount your Space Risk Score improves when this finding is fixed across every affected asset. See How Risk Reduction is calculated.
-
Effort. The estimated time to remediate, shown as both the industry-standard manual effort and the time required with Mondoo's automated remediation, with an
X FASTERmultiplier. See How Effort is calculated.
Find Top Actions
In the Mondoo App, select Security in the left navigation, then select Overview. The Top Actions panel is on this page, sorted with the highest-impact finding at the top.
Work the list
-
Read the top item. Note its Risk Reduction (how much your score drops if you fix it) and its Effort (how much time it takes).
-
Spot the quick wins. Scan the list for high Risk Reduction paired with low Effort. These deliver the most return for the least work.
-
Update Status. Each Top Action has a Status field you can update as work progresses:
Status Meaning Not Started Default. Remediation hasn't begun. In Progress Remediation is actively underway. Ticketed A ticket has been created to track the work. Fixed The finding is fully remediated. Cancelled The finding will not be remediated. -
Plan with the numbers. Use Risk Reduction and Effort to plan sprints, justify resource allocation, and assign work.
By working down the list, you keep your team focused on the changes that actually move the score.