Skip to main content

Surface Security Features

Surface Security gives security teams full visibility into how employees interact with authentication systems, SaaS applications, and AI tools across their browsers — without passwords ever leaving the endpoint. This section documents every feature of the product from an operator's point of view: what each page shows, how the underlying detection works, and how to configure it.

If you are deploying or operating the platform itself (installation, sizing, upgrades, APIs), see the Platform Guide.

Where to start

If you want to...Start here
Understand the dashboards and daily monitoring workflowDashboards
Triage and respond to security alertsAlerts
See who and what is enrolledUsers & Groups, Devices
Map the applications and credentials in useAttack Surface Discovery, Credential Endpoints
Understand phishing protectionPhishing Detection
Govern AI tool usage and data lossAI Usage, Browser DLP
Administer the consoleOnboarding, Admin Users & Roles
Run multiple tenants as an MSSPMSSP Overview
Deploy the iOS companion appiOS Getting Started

Feature areas

Monitoring & Response — the main, analyst, and executive dashboards, the alert triage workflow, the raw event explorer, campaign intelligence that groups related attacks, threat clusters, and global search.

Users & Devices — directory-synced user inventory with per-user risk, enrolled browser devices, BYOD gating with the Device Identity Tag, passkey adoption tracking, and help-desk identity verification codes.

Attack Surface — passive discovery of every application, authentication endpoint, and third-party browser extension your workforce touches, plus the domain scopes and protected domains that focus monitoring where it matters.

Threat Protection — layered phishing detection (lookalike domains, cloned-page detection, adversary-in-the-middle, ClickFix), active countermeasures that disrupt attacker tooling, and per-alert-type response playbooks.

AI & Data Protection — visibility into workforce AI usage, governance controls for generative AI tools, agentic AI session security, and browser-level data loss prevention.

Administration — the onboarding wizard, admin roles and permissions, single sign-on, tenant-wide settings, and the audit log.

MSSP & Multi-Tenant — for managed security providers: cross-tenant monitoring, tenant lifecycle management, delegated admin access, policy floors and templates, alert routing, and white-label branding.