IAM Permissions Explorer – Cloud Security
A simple cloud security dashboard that helps security engineers identify, review, and remediate excessive or unused IAM permissions across multiple cloud accounts. The product focuses on visibility, risk prioritization, and safe remediation rather than deep configuration. Design a minimal, easy to understand IAM Permissions Explorer for a cloud security platform. Screen 1 – IAM Permissions Overview: Create a dashboard view showing a summary of IAM risk across cloud accounts. Include account selector (AWS, Azure, GCP), summary cards for total identities, high risk permissions, unused permissions, and admin level access. Display a table listing identities with columns for identity name, risk level (high, medium, low), last used timestamp, and affected services. Add filters for risk level and unused duration. Screen 2 – IAM Permission Details: Create a detailed view for a selected identity. Show identity metadata, attached policies, used vs unused permissions, last usage timeline, and risk indicators such as privilege escalation or sensitive service access. Include clear recommended actions such as removing unused permissions or reducing privilege scope. Screen 3 – Remediation and Review: Create a remediation screen where users can select permissions to remove or modify. Include impact warnings, approval or review workflow options, audit log preview, and action buttons to apply changes or create a review ticket. The design should be low fidelity wireframes with simple layout, clear labels, and annotations explaining purpose of each section. Focus on clarity and logical flow rather than visual design.