Employee Portal & Score Visibility
TIDALBAY supports full transparency by giving employees visibility into their own security scores. The Employee Portal helps employees understand, monitor, and improve their security posture.
Enabling the Employee Portal
The Employee Portal is disabled by default. To enable it:
- Navigate to Admin → Settings → Employee Portal
- Toggle Enable Employee Portal
- Configure visibility settings (see below)
- Click Save
SSO Integration
When SSO is configured, employees access the portal through your organization's identity provider. No separate credentials are needed.
What Employees See
The Employee Portal displays the following information (each can be individually enabled or disabled):
Score Dashboard
- Current Score: The employee's numerical security score (0–100)
- Score Band: The risk band (Green, Yellow, Orange, Red, Critical)
- Score Trend: A chart showing score changes over the past 90 days
- Peer Comparison: How the employee's score compares to the department average (anonymized)
Contributing Factors
Employees can see which events contributed to their score:
- Positive events: Training completions, phishing reports, clean streaks
- Negative events: Phishing clicks, MFA changes, policy violations
- Time decay: How older events are losing impact over time
Privacy
Event details can be configured to show varying levels of detail. For example, you can show "Email security event" instead of "Clicked phishing simulation link" to reduce stigma while still providing actionable insight.
Improvement Actions
The portal shows employees what they can do to improve their score:
- Assigned training modules with completion status
- Recommended security actions (enable MFA, update password, etc.)
- Time-based recovery projections
Visibility Configuration
| Setting | Description | Default |
|---|---|---|
| Show numerical score | Display the exact score number | On |
| Show score band | Display the risk band label and color | On |
| Show score history | Display the score trend chart | On |
| Show event details | Display specific events affecting the score | On |
| Show peer comparison | Show anonymized department average | Off |
| Allow dispute | Let employees dispute specific events | Off |
Score Disputes
When disputes are enabled, employees can flag events they believe are incorrect:
- Employee clicks Dispute on a specific event
- Employee provides a reason for the dispute
- Security team reviews the dispute in Admin → Disputes
- If approved, the event is removed and the score is recalculated
Dispute Limits
By default, employees can submit up to 3 disputes per month. This can be configured in the Employee Portal settings.
Notifications
Employees can receive notifications about their score:
- Band change alerts: When their score moves to a different band
- Training assignments: When new training is assigned based on score
- Score recovery: When their score improves to a better band