RiskOS™ Setup

Set up Watchlist in RiskOS™

Use Watchlist Screening and Monitoring in a RiskOS™ workflow to detect sanctions, PEPs, enforcement, or adverse media risks. This setup guide takes you from prerequisites through publishing your workflow.

How it works

Socure's Watchlist is a compliance enrichment available in RiskOS™. It screens individuals, businesses, and entities against global sanctions and enforcement lists, PEP registries, and adverse media. It continuously monitors for updates and generates alerts to help your compliance team manage risk efficiently.

Step 1 - Set up access for RiskOS™

Before you can run Watchlist in a workflow, your organization needs access. Your account owner or administrator can confirm this for you.

• Ensure you have access to Sandbox and Production environments.
• RiskOS™ uses Bearer tokens to authenticate API requests. You can access your API keys, integration variables, and sample requests on the Developer Workbench > API Keys page.
• Verify that your account has the correct permissions: Administrator, Case Officer, Case Supervisor, or Case Analyst. (Permissions may differ based on your case management workflow settings.)

In your Production environment, confirm that:

• the Watchlist queue is visible.
• the Watchlist enrichment tile is enabled in the Cases view.

Step 2 - Configure policies

Set up your Watchlist policies before building workflows:

• Use default settings or create your own screening and monitoring policies.
• Configure thresholds for Name Match Score, Entity Correlation Score, and Date of Birth match tolerance.
• Decide whether to suppress PEP hits without URLs, how to define inactive PEPs, and apply PEP country filters.

Step 3 - Build your workflow

Once your policies are in place, add Watchlist to a RiskOS™ workflow.

• Define which reason codes trigger manual review vs. auto-decision.
• Create or edit a workflow that includes the Watchlist product.
• Test your workflow in Sandbox.
• Publish your workflow — only live workflows process API evaluations.

Step 4 - Enable monitoring

Enable monitoring to track updates in real time:

• Register a webhook endpoint or email address in RiskOS™ to receive monitoring events.
• Turn on Automonitoring to monitor all new transactions automatically.
• Bulk-enroll existing portfolios using the Batch Jobs CSV upload.

Step 5 - Define your review process

Establish clear analyst guidelines for interpreting results:

• Match fields
• DOB match types
• Source list details

This ensures consistent decision-making across your compliance team.

Step 6 - Import your customer portfolio

• Import active customers in batch or via API into Socure.
• Mark all initial matches as false positives to establish a clean monitoring baseline.

Step 7 - Integrate with your workflow

• Create an evaluation request using your Watchlist-enabled workflow.
• Parse the evaluation response to implement your decision logic.

Step 8 - Disposition and tune

• Start dispositioning alerts as match or no match to send feedback to Socure.
• Continuously tune your Name Match Score and Entity Match Score settings to optimize performance.

Workflow testing checklist

Use this checklist to confirm your Watchlist workflow is ready for production: