Penetration Dashboard components

  • Release version: Australia
  • Updated March 12, 2026
  • 2 minutes to read
    • Summarize
    Summarized using AI
    This content was generated using new OpenAI-powered functionality. Results are provided on an as is basis and are not guaranteed to be accurate or complete.

    Summary of Penetration Dashboard components

    The Penetration Dashboard provides visual analytics to help teams track their progress and manage penetration testing effectively. It allows users to monitor important metrics and test requests, ensuring timely actions on critical security assessments.

    Show full answer Show less

    Key Features

    • Important Items Indicators: These tiles display crucial metrics such as unassigned emergency releases, overdue tests, unassigned tests, and critical validations pending, helping teams prioritize their actions.
    • Penetration Test Requests: View test requests by state and assess overdue tests and release approvals. Users can filter requests by timeframes to focus on specific categories like overdue tests.
    • Findings: Monitor open penetration test findings and those pending validation, categorized by risk rating, to address security issues promptly.
    • Team Overview: Displays tests assigned to team members across various states to ensure accountability and track progress over a six-month period.

    Key Outcomes

    By utilizing the Penetration Dashboard, ServiceNow customers can effectively manage their penetration testing processes, prioritize urgent tasks, and enhance their overall security posture. The dashboard aids in visualizing data, ensuring that teams can respond swiftly to vulnerabilities and compliance requirements, ultimately driving better business outcomes.

    Analyze your team's progress and data visually and drive business outcomes with the help of the components on your personal dashboard.

    Important Items indicators

    View the unassigned emergency release, tests past overview date, unassigned tests and any critical validation pending.
    • Unassigned emergency release: Indicates the total count of unassigned penetration test requests for the 'emergency release' assessment type.
    • Tests Overdue: Indicates the total count of tests past due date.
    • Unassigned tests: Indicates the total count of unassigned tests to the team.
    • Critical Validation Pending: Indicates the total count of AVITs for all the requests in the "Validation Pending" state.
    Note:
    Select each tile to view the list of items and perform the required tasks.

    Penetration Test Requests

    View the test requests by state, tests overdue, and tests by release approvals.
    • Test requests by state: Indicates the number of test requests in these different states of the Penetration Testing cycle. You can view and navigate to the list of test requests in different states by clicking on each colored tile. You can also view the state of these tests for the following six months by selecting the month from the filter drop-down on the top-right section of the tab. Following are the different test request states:
      • Open: Number of test requests open.
      • Scoping in progress:
      • Scoping completed:
      • Environment preparation:
      • Environment ready for testing:
      • Testing in progress:
      • Full penetration test:
      • Bug bounty programs: Incentives ethical hackers with rewards to find and report security vulnerabilities.
      • Focused test:
      • Executive interest: Report on senior management's engagement and support for critical projects within the organization.
      • One-off reviews: Assess specific projects outside regular development and release cycles to evaluate performance and implement improvements.
      • Emergency release: Supports emergency releases that are required for rapid software updates to address critical issues like security vulnerabilities.
    • Tests overdue:: Indicates the test pending from a certain time period. You can select the timeline for which you want to view the due tests, the drop-down options are: Due Yesterday,Due this week,Due last week,Due last month, and Due before last month.
    • Tests by release approvals: Indicates approval states for completed tests ready for release. Also, verifies that all necessary checks are completed before deploying new software. You can also view the state of these tests for the following six months by selecting the month from the filter drop-down on the top-right section of the tab.

    Findings

    Indicates the number of open penetration test findings (AVITs) reported along with the number of AVITs pending validation. You can view and navigate to the list of findings in different states by selecting each colored tile. The following data you can view under this section:
    • Open findings (AVITs) by risk rating
    • Validation pending for findings (AVITs)

    Team Overview

    Indicates the tests assigned to team members for the following six months period. Following are the different states:
    • Scoping in progress
    • Open
    • Scoping completed
    • Environment ready for testing
    • Testing in progress
    • Environment preparation