0
30.1.0
Zurich, Yokohama Patch 6, Yokohama, Xanadu Patch 9, Xanadu, Washington DC, Vancouver, Utah
Note:
This app version is intended for Unified Security Exposure Management (USEM), a significant architectural upgrade to the Vulnerability Response applications.
If you are currently using Vulnerability Response and upgrading to USEM for the first time, you must use the Migration assistant for Unified Security Exposure Management to ensure a safe and successful upgrade. For full details, please refer to the KB2556844 and documentation before proceeding.
If you do not intend to upgrade to USEM, please select a version below 30.x when installing or upgrading.
The Performance Analytics Content Pack for Vulnerability Response contains performance analytics dashboards, reports, and indicators to provide visibility into each stage of the vulnerability risk management life cycle.
Dashboards for three distinct personas are included with the application:
- The Vulnerability Management Dashboard
- The Chief Information Security Officer (CISO) Dashboard
- The Application Vulnerability Management Dashboard
The Performance Analytics Content Pack for Vulnerability Response includes the following capabilities:
- Executive personas, such as Chief Information Security Officers, can view Key Performance Metrics (KPIs) for vulnerability remediation, areas in the business that have the highest risk, and recommended actions to lower risk on the CISO dashboard.
- Visually display all of your vulnerable item activity with reports organized by tabs on the dashboard.
- View data trends for your most important reports daily or in real time.
- Report on the total number of vulnerabilities by Common Weakness Enumeration (CWE) discovered in the environment.
- Visualize exploit complexity (low, high or medium) versus attack vector (local, adjacent, network).
- Report on vulnerabilities counts and states versus business service criticality.
- Filter reports by vulnerability business impact (critical, high, non-critical).
- Preconfigured, second level breakdowns exclusions applied to vulnerable configuration items (CIs), retired CIs, and deferred vulnerable items (VIs).
- Application Vulnerability Response provides reports on security posture, remediation trends and scoreboard for most critical application vulnerable items.
- Changed
- Updated table references for the dashboards as per the standardized data model and modularized feature sets of Unified Security Exposure Management.
The Vulnerability Response application and its dependency plugins must be installed and activated.
- For more information on Vulnerability Response application compatibility, see Vulnerability Response and Configuration Compliance Compatibility Matrix in the Supporting Links and Docs section on this page.
Permissions and roles
- Roles required:
- System Admin (admin) for installation of applications
- Vulnerability Response Reports
- Vulnerability Admin (sn_vul.vulnerability_admin)
- Application Vulnerability Response Reports
- Application Security Manager (User part of App-Sec Manager group)