Using Backlog - Administrator Guide - Cortex Cloud Posture Management - Cortex CLOUD

By default, only AppSec Admins have permission to configure the issues on existing SBOM are considered new setting

The Are SBOM issues considered new setting controls how SBOM-originated findings are classified against the Backlog/New baseline. This setting is disabled by default, meaning that SBOM findings that existed before the initial baseline scan are classified as Backlog, while only SBOM findings detected after the baseline are classified as New. When enabled, all SBOM findings are treated as New regardless of when they were first detected. Only users with the AppSec Admin role can view and modify this setting. To configure, navigate to Settings → Configuration → Application Security → AppSec Issues Configurations and enable Are SBOM issues considered new

Permissions for all other capabilities, such as viewing issues or applying policies, are defined by the existing RBAC/SBAC policies and the user's specific issue management capabilities

The Backlog/New classification is maintained independently for every branch

The system allows policies to be defined and applied for specific branches, enabling you to tailor security rules (for example, enforcing stricter policies for New critical issues on main branches, or allowing Backlog issues on development branches) based on their classification