Remediation efforts in the Vulnerability Manager Workspace

  • Release version: Xanadu
  • Updated August 1, 2024
  • 2 minutes to read
    • Summarize
    Summarized using AI
    This content was generated using new OpenAI-powered functionality. Results are provided on an as is basis and are not guaranteed to be accurate or complete.

    Summary of Remediation Efforts in the Vulnerability Manager Workspace

    A Remediation Effort in the Vulnerability Manager Workspace is a collection of static records linked to a watch topic, which do not update with new data. Specific roles are required to manage different types of vulnerable items (Host, Application, Container) and configuration test results.

    Show full answer Show less

    Key Features

    • Access remediation efforts by selecting the Active option and clicking on a link for more details.
    • Categorize remediation efforts by record type through the Group by Record Type option.
    • Monitor overall progress on records associated with a remediation effort via the Overview tab.
    • View detailed information, including status and watch topic association, on the Details tab.
    • Manage remediation tasks and track remediation percentages on the Remediation Tasks tab.
    • Check records linked to the remediation effort on the Vulnerable Items tab.
    • Configuration Test Results can be accessed if associated with the relevant watch topics.

    Key Outcomes

    When all records in a remediation task are closed, the remediation effort becomes Inactive, preventing those records from being added to new efforts. Deactivating a remediation effort allows active records to be reassigned. Understanding these processes enables effective tracking and management of vulnerabilities within your organization.

    A Remediation Effort is a set of records that are associated with a watch topic. The records listed on a remediation effort are static. They are not updated by new import data or changes that you make to watch topics.

    Role required:
    • sn_vul.vulnerability_analyst, or sn_vul.vulnerability_admin for host vulnerable items (VITs)
    • sn_vul.app_sec_manager for application vulnerable items (AVITs)
    • sn_vul_container.vulnerability_analyst or sn_vul_container.vulnerability_admin for container vulnerable items (CVITs)
    • sn_vulc.admin for configuration test results (TRs)

    With Active selected under the Remediation efforts list on the List page, click a remediation effort link to open it. To categorize the Remediation efforts into host vulnerable items (VITs), application vulnerable items (AVITs), container vulnerable items (CVITs), and configuration test results (CTRs), select the three dots menu on the Record Type column and then select Group by Record type.

    The related list items on the remediation effort record permit you to view overall remediation progress and status on the records associated with it.

    • On the Overview tab, monitor the records associated with this remediation effort that have been closed over time. To the right of the record, click the filter icon on the graph to see the filters applied to the data visualization.
    • On the Details tab, view details about the remediation effort including its associated watch topic and status (Active or Inactive). You can deactivate a remediation effort from this page. If you deactivate the remediation effort before all the records are closed, any active records become available to add to new remediation efforts.
    • On the Remediation Tasks tab, view the Remediation Tasks associated with this remediation effort. See the percentage of the records associated with this task that are remediated.
    • On the Vulnerable Items tab, view the records associated with this remediation effort. When all the records in a remediation task are completed and closed, the remediation effort transitions to Inactive. When a remediation effort is inactive, all the closed records associated with the remediation effort aren’t available to add to new remediation efforts.
      Note:
      The Vulnerable Items tab appears for the remediation efforts that are associated with watch topics in the Host Vulnerabilities, Application Vulnerabilities, and Container Vulnerabilities modules.
    • On the Configuration Test Results tab, view the Configuration Test Results associated with the Remediation Effort. When all the records in a remediation task are completed and closed, the remediation effort transitions to Inactive. When a remediation effort is inactive, all the closed records associated with the remediation effort aren’t available to add to new remediation efforts.
      Note:
      The Configuration Test Results tab appears for the remediation efforts that are associated with the watch topics in the Configuration Test Results module.

    For more details and UI actions you can perform from a remediation effort, see Use Remediation Effort records.