# Security policies

Group administrators can define Open Source and Container security policies, providing an automated way to identify certain issues or types of issues and apply actions like changing the severity of or ignoring an issue based on specified conditions.

{% hint style="info" %}
Security policies are applicable to Snyk Open Source and Snyk Container Projects.
{% endhint %}

You can [create a security policy and set rules](https://docs.snyk.io/manage-risk/policies/security-policies/create-a-security-policy-and-rules) by clicking the **Policies** menu option on the Group Overview page to open the Policy manager.

You can [apply a policy to Project attributes](https://docs.snyk.io/manage-risk/policies/assign-policies-to-projects) or [apply a policy to an Organization](https://docs.snyk.io/manage-risk/policies/assign-a-policy-to-an-organization).

For more information about security policies, see the following pages:

* [Security policy conditions](https://docs.snyk.io/manage-risk/policies/security-policies/security-policies-conditions)
* [Security policy actions](https://docs.snyk.io/manage-risk/policies/security-policies/security-policy-actions)
* [Security policy results](https://docs.snyk.io/manage-risk/policies/security-policies/security-policy-results)