Remediation efforts overview

  • Release version: Washingtondc
  • Updated February 1, 2024
  • 2 minutes to read
    • Summarize
    Summarized using AI
    This content was generated using new OpenAI-powered functionality. Results are provided on an as is basis and are not guaranteed to be accurate or complete.

    Summary of Remediation Efforts Overview

    A Remediation Effort consists of static records linked to a watch topic, which are not updated by new import data. Specific roles are required to manage these records: vulnerability analysts, admins, and application security managers for different types of vulnerable items (VITs, AVITs, CVITs) and configuration test results (TRs).

    Show full answer Show less

    Key Features

    • Accessing Remediation Efforts: Select "Active" on the Remediation efforts list and click the remediation effort link to view details.
    • Grouping Records: Use the three dots menu in the Record Type column to categorize records into VITs, AVITs, CVITs, and CTRs.
    • Tabs Overview:
      • Overview Tab: Monitor closed records over time and filter the data visualization.
      • Details Tab: View information about the remediation effort, including its watch topic and status.
      • Remediation Tasks Tab: Check the percentage of remediated records linked to the remediation tasks.
      • Vulnerable Items Tab: Access records associated with the remediation effort, available for VITs, AVITs, and CVITs.
      • Configuration Test Results Tab: View results associated with the remediation effort, specifically for configuration test topics.

    Key Outcomes

    Once all records in a remediation task are completed, the effort transitions to Inactive status, restricting closed records from being added to new efforts. Deactivating a remediation effort allows active records to be reassigned to new remediation efforts.

    A Remediation Effort is a set of records that are associated with a watch topic. The records listed on a remediation effort are static. They are not updated by new import data or changes that you make to watch topics.

    Role required:
    • sn_vul.vulnerability_analyst, or sn_vul.vulnerability_admin for host vulnerable items (VITs)
    • sn_vul.app_sec_manager for application vulnerable items (AVITs)
    • sn_vul_container.vulnerability_analyst or sn_vul_container.vulnerability_admin for container vulnerable items (CVITs)
    • sn_vulc.admin for configuration test results (TRs)

    With Active selected under the Remediation efforts list on the List page, click a remediation effort link to open it. To categorize the Remediation efforts into host vulnerable items (VITs), application vulnerable items (AVITs), container vulnerable items (CVITs), and configuration test results (CTRs), select the three dots menu on the Record Type column and then select Group by Record type.

    The related list items on the remediation effort record permit you to view overall remediation progress and status on the records associated with it.

    • On the Overview tab, monitor the records associated with this remediation effort that have been closed over time. To the right of the record, click the filter icon on the graph to see the filters applied to the data visualization.
    • On the Details tab, view details about the remediation effort including its associated watch topic and status (Active or Inactive). You can deactivate a remediation effort from this page. If you deactivate the remediation effort before all the records are closed, any active records become available to add to new remediation efforts.
    • On the Remediation Tasks tab, view the Remediation Tasks associated with this remediation effort. See the percentage of the records associated with this task that are remediated.
    • On the Vulnerable Items tab, view the records associated with this remediation effort. When all the records in a remediation task are completed and closed, the remediation effort transitions to Inactive. When a remediation effort is inactive, all the closed records associated with the remediation effort aren’t available to add to new remediation efforts.
      Note:
      The Vulnerable Items tab appears for the remediation efforts that are associated with watch topics in the Host Vulnerabilities, Application Vulnerabilities, and Container Vulnerabilities modules.
    • On the Configuration Test Results tab, view the Configuration Test Results associated with the Remediation Effort. When all the records in a remediation task are completed and closed, the remediation effort transitions to Inactive. When a remediation effort is inactive, all the closed records associated with the remediation effort aren’t available to add to new remediation efforts.
      Note:
      The Configuration Test Results tab appears for the remediation efforts that are associated with the watch topics in the Configuration Test Results module.

    For more details and UI actions you can perform from a remediation effort, see Use Remediation Effort records.