Bot Governance

Overview

As part of the Security Architecture Review (SAR) recommendations, organizations need to strengthen governance and observability for bots within the Interaction Experience (iX) ecosystem. This ensures that bot creation, deployment, and usage adhere to security, compliance, and operational standards.

Why Observability Matters

• Clear Visibility: Know exactly which bots are being created, where they’re running, and whether they’re accessible to the public.

• Managing Risks: Stop unauthorized or insecure bots before they cause problems like data leaks or compliance breaches.

• Strong Governance: Make sure every bot follows your organization’s policies and security standards throughout its lifecycle.

User Roles and Permissions

The Bot Governance Dashboard is designed with role-based access to ensure security and proper oversight. Below are the key roles and their respective permissions:

1. Organization Admins

   1. Primary Audience: The dashboard is mainly intended for organization admins.

   2. Access Level: Full visibility into all bots across the organization.

2. Platform Admins

   1. Secondary Audience: Platform admins also have access to the dashboard.

   2. Access Level: Similar visibility as org admins but primarily for operational support.

How to access the Observability Report

1. This dashboard provides visibility and governance over all bots (or apps) created within the organization. It helps administrators track bot configurations, security posture, and compliance status.

2. Navigate to Administration-> Org Configuration-> Governance

1. The main section lists all bots created within the organization.

2. Columns include

1. If the Governance team wants to understand more about the each of the apps, click on three dots and click on View App Details:

1. App Details view for a specific bot within the governance platform. This page provides comprehensive information about the selected bot, including its configuration, usage metrics, and associated components.

2. Summary Metrics

When clicked on "Go to App" you will be redirected to the Custom App Publishing screen of the app "Acme Digital Assistant", which shows the Total number of publishing instances for this bot.

Enhance Bot Observability Dashboard on User Management

1. Governance Page can be accessed through User Management menu.

2. Navigate to User Management-> Manage User-> Org and User Management

3. Click the "View Details" button next to the organization "Concentrix".

1. Selecting "View Details" lets users see a list of individuals associated with "Concentrix" and the apps they have created.

1. If the Governance team wants to understand more about the each of the apps, click on three dots and click on View App Details:

Note: If you find apps with identical names, you can identify the correct one by checking the creator's username.

1. Governance team members can access app details as described above:

1. When clicked on "Go to App" you will be redirected to the Custom App Publishing screen of the app "Acme Digital Assistant", which shows the Total number of publishing instances for this bot.

This section explains how bot governance works, providing insights into bot creation, management, and processes. If necessary, governance can contact the bot creator to request modifications or removal. Currently, we have developed a report to offer more control and observability over bots.