Vulnerability Management Dashboard Essentials Part 2

Let’s understand what should we know from these points

1. Assets count: Will tell you how many assets under your subscription and will scan or have scanned by Scanner or Agent based scanning. This will help to manage inventory on which vulnerability assessment require.
2. Assets scanned status: This will help us to know how many assets scanned through Authentication status like successful, failed and Not-Attempted.
3. Top 10 vulnerable assets: Assets which have vulnerablility count larger than others scanned assets.
4. Vulnerable assets by severity: Assets Segregation on the basis of severity, Like: how many assets are vulnerable with critical, high and medium severity vulnerabilities.
5. True risk against the Organization: This will tell you, your environment is under low, medium, high or critical. For calculating the true risk you have to feed business risk values in tools.
6. Active vulnerability count: Vulnerabilities count which are active in your environment except information gathered and potential. You should keep confirmed vulnerabilities with severity above 2.
7. Top 10 active vulnerabilities: For this point, you need to consider many factor like:- Severity, vulnerable assets count for each vulnerability. Keep vulnerable assets count stationary in order high to low and you can vary vulnerability severity like critical and high.
8. Active vulnerabilities by aging: This is a important widget in your Dashboard, how many vulnerabilities are still pending from 90 days, 60 days, 30 days and 10 days. So that you can actively work over long pending vulnerabilities.
9. Fixed vulnerabilities vs ageing: That will help you to know how many vulnerabilities fixed under SLA or in under 90 days, 60 days, 30 days and 10 days from first detection date.
10. Backlog vulnerabilities status: Many people have many perspective for this. Like:- at the time of transition existed vulnerabilities called backlog vulnerabilities, Vulnerabilities which are not covering in Vulnerability Aging widget means vulnerabilities which are existed from more than 90 days will come under backlog widget.

a. You can segregate them through severity and assets counts.

We will meet you in next part with remaining point of VM Dashboard explanation.

Continued

Vulnerability management Dashboard Essentials Part 3

Thanks