# My Organization The scoped view where IT and scope owners turn KPIs into named owners. Same data leadership sees on [KPI Dashboard](/user-guides/impact-dashboard/kpi-dashboard.md), broken into actionable assessments and routed via delegation. The scope itself is configured per user in *Settings → Configuration → Organization* — typically a department, region, cost centre, or HR attribute. It is designed to answer simple but important questions: * What is the cost and security state of my slice of the organisation? * Where in the org chart do the issues live? * Who is the right person to own each finding? *** ## Overview and Cost The first sub-tab — three cards covering recoverable license spend and lifecycle. > Optimise licenses. Recover spend. Defend the next renewal. ### KPI cards #### % Inactive accounts The share of accounts in your scope that haven't signed in for the configured retention period. * **What it gives you:** a single percentage that summarises both license waste and dormant access in your scope. * **What you see:** the percentage, *"X of Y accounts are inactive"*, and a *View users* button to the people behind the number. #### % Potential license savings The recoverable share of monthly license spend in your scope. * **What it gives you:** a defensible savings number for the renewal conversation, sourced from real usage data. * **What you see:** the percentage, the saving in your local currency, and a *View licenses* deep-link. * **Worked example:** an organisation rolled out an internal AI tool and paid for it at 3× cost-per-active-user before noticing usage had dropped when Microsoft Copilot launched. With this card and the underlying assessment, the saving surfaces before renewal — see the [Application Owner](/user-guides/impact-dashboard/application-owner.md) story for the full pattern. #### EF license optimization Users on E-tier (premium) licenses who could move to Frontline (F) tier based on actual usage. * **What it gives you:** the right-sizing candidates Bsure has already identified — typically frontline or shift workers wrongly licensed at premium tier during onboarding. * **What you see:** the count of candidates and a *View recommendations* deep-link. {% hint style="info" %} **Feature flag.** The EF license optimization card is gated by `isAiRecommenderEfFeatureEnabled`. Ask your administrator to enable AI Recommender for E-to-F license optimisation. {% endhint %} *** ## Security The second sub-tab — two cards covering identity and device posture. > MFA on everyone. Supported devices. Owned guests. ### KPI cards #### % Users without MFA The share of members in your scope who haven't registered an MFA method. * **What it gives you:** the headline MFA-coverage number, with a *View users* deep-link to the gap. * **What you see:** the percentage and *"X of Y members haven't registered MFA"*. #### % Risky devices The share of Windows devices in your scope that are unsupported. * **What it gives you:** the device-side coverage gap, in one number. * **What you see:** the percentage and *"X of Y Windows devices are unsupported"*. *** ## What you'll see, and why it matters — the assessments Bsure surfaces eight organisation assessments today, covering user lifecycle, license optimisation, device security, guest access, and authentication. Each one names a finding and suggests the next action. The same eight render here and on [My Team](/user-guides/impact-dashboard/my-team.md), scoped accordingly. ### User lifecycle #### `You have N inactive users — consider offboarding` * **What it gives you:** the named users to offboard, recovering license cost and tightening access in one move. ### License optimization #### `Save kr X by removing N unused accounts` * **What it gives you:** a currency-value savings claim for Finance — *"remove these N accounts and we save this much next renewal."* #### `N users on E-tier licenses can move to Frontline (F)` * **What it gives you:** the right-sizing list for premium licenses — typically frontline or shift workers wrongly licensed during onboarding. * **Note:** gated by `isAiRecommenderEfFeatureEnabled`. ### Device security #### `N devices need Windows update` * **What it gives you:** the unsupported-device list with the manager or owner attached, ready for a coordinated update push. ### Guest access #### `Reduce risk by reviewing N external guest accounts` * **What it gives you:** the periodic review list — for each guest, decide keep or remove, so guests don't outlive the project they were invited for. #### `Reduce risk by reviewing N personal external guest accounts` * **What it gives you:** the same review list, prioritised on personal-email guests (gmail, hotmail, outlook.com). ### Authentication #### `N members use a slow and unsecure MFA method (risk = Weak)` * **What it gives you:** the named users still on phone-call or SMS MFA, ready to be moved onto Authenticator app or FIDO2 — the gap auditors flag. #### `N members haven't registered MFA method` * **What it gives you:** the names behind the MFA-coverage gap, so chasing the registration is a list, not a percentage. ### Lifecycle: Active → Delegated → Ignored Every assessment moves through three states: * **Active** — open and untouched. * **Delegated** — assigned to someone else; you're waiting for them to act. They see it as Active on their view (My Team or My Organization, scoped to them). * **Ignored** — marked not relevant for your organisation. Stays on the *Ignored* tab and can be reactivated. *** ## The delegation flow Every assessment row carries a *Delegate* button. Clicking it opens *Change assessment delegation*: * **Delegate to** — searches your Entra tenant by name or email. The recipient does not need a Bsure account first. * **Open email draft** — drafts a notification message in Outlook (default on). * **Copy instructions to clipboard** — for any other channel you prefer. Once you click *OK*, the assessment moves from your Active list to your Delegated list and lands on the receiver's plate. {% hint style="info" %} **Recipients are Entra users, not Bsure users.** Bsure searches the entire Entra tenant. Anyone in your organisation can be a delegate, even without a Bsure account. They get the assessment via email; if they need to act inside Bsure, an admin can grant access via *Settings → Configuration → Users Management*. {% endhint %} *** ## Drilldown Data Below the assessments, the *Drilldown Data* section breaks the same scope into seven pivot tabs. | Tab | What it gives you | | ---------------------- | -------------------------------------------------------------- | | Users | Who is in the scope, and their state, license, and MFA method. | | License cost | Scope cost in licenses, by license type. | | Application cost | Scope cost in applications, by application. | | Authentication Methods | How the scope authenticates today. | | Devices | Which devices the scope uses, and their compliance state. | | Guests | Which guests have access into the scope. | | AI Recommendations | Optimisation suggestions Bsure has surfaced for the scope. | Each tab has filters, a column picker, and an Export button — the export matches the visible filter state. *** ## Configuring scopes My Organization is scoped via *Settings → Configuration → Organization*. A scope can be a department, region, cost centre, or any synced Entra user attribute. {% stepper %} {% step %} ### Go to *Settings → Configuration → Organization*. Open the Organization configuration area. {% endstep %} {% step %} ### Pick the user. Select the user whose scope you want to grant or change. {% endstep %} {% step %} ### Set or edit their scope. Configure the scope value for that user. {% endstep %} {% step %} ### Save. The user sees their My Organization tab populate the next time they sign in. {% endstep %} {% endstepper %} For users who don't fit a configured scope but are line managers in Entra, [My Team](/user-guides/impact-dashboard/my-team.md) covers them with no configuration. *** ## Recommended governance process A monthly cadence: {% stepper %} {% step %} ### Review the trends on KPI Dashboard with leadership. Start with the leadership view. {% endstep %} {% step %} ### Pick one Risk-pillar number and one Cost-pillar number to push down this month. Choose the priorities for the month. {% endstep %} {% step %} ### Open My Organization, drill into the relevant assessments, and assign each to a named owner. Route the findings to accountable people. {% endstep %} {% step %} ### Two weeks later, check the *Delegated* tab — anything still open gets a nudge or a re-delegation. Follow up on anything that hasn't moved. {% endstep %} {% step %} ### At the next leadership review, point at the trend. Use the trend to show progress. {% endstep %} {% endstepper %} *** ## Key takeaway My Organization gives you direct visibility into cost, security, and accountability across a configured slice of the business — and turns each finding into an owned action, routed via the same delegation flow used everywhere else in Bsure. Distributed accountability, on tap. Bsure. --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.bsure.io/user-guides/impact-dashboard/my-organization.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.