To give context, our leadership and information security team are concerned with alerts that I coming from Sophos. Their concerns are valid considering the email titles are: Alert for Sophos Central [*****]: A device is not encrypted.
However, these are false alerts that are only occurring when we are adding new endpoints to our environment and putting Sophos Central on the devices. We are looking for a way to minimize this noise. What I assume is happening is that there is a period after install for all the 'check boxes' to be checked before reading as encrypted and the alert is going out before those checks are being met.
We have scaled back the alerting to hourly, but that doesn't seem to be helping. Any ideas?
[edited by: Gladys at 7:59 AM (GMT -8) on 20 Nov 2023]