Platform Analytics Solutions for Vulnerability Management
Summarize
Summary of Platform Analytics Solutions for Vulnerability Management
Platform Analytics Solutions for Vulnerability Management provide prepackaged Performance Analytics and Reporting content designed to work with ServiceNow AI Platform products. This solution enables you to track the volume, performance, and progress of vulnerabilities—from initial detection and analysis to containment or remediation—helping you manage security risks effectively.
Show less
Reports and dashboards can be filtered by assignment group, exploits, risk rating, or vulnerability state, allowing for targeted insights and efficient remediation efforts.
Key Features
- Performance Analytics for Vulnerability Response: Available as a separate subscription from the ServiceNow Store, this content pack includes two key dashboards:
- Vulnerability Management (PA) dashboard
- Vulnerability Management Chief Information Security Officer (CISO) dashboard
- Role-based Access and Management:
- ServiceNow AI Platform administrator (admin): Responsible for installation, activation, and configuration changes.
- Performance Analytics administrator (paadmin): Manages indicators, dashboards, data collection, and sharing with stakeholders.
- Real-Time Data Visualizations: Certain reports on the Vulnerability Management (PA) dashboard provide live insights into critical vulnerable items, enabling prompt remediation actions.
- Customizable Analytics and Reporting Solutions: Delivered with all configuration records needed to analyze default applications, which can be tailored for production environments.
Practical Use and Navigation
- Install and configure Performance Analytics for Vulnerability Response on a non-production instance first to validate setup.
- Access dashboards via the Vulnerability Response module:
- Vulnerability Management (PA) dashboard: Vulnerability Response > Overview
- Vulnerability Management CISO dashboard: Vulnerability Response > CISO Dashboard
- Reports available in real time include:
- Vulnerable Items by Assignment Group
- Vulnerable Configuration Items (CIs) without Owners
- Retired or Stolen CIs with Active Vulnerabilities
- Deferred Vulnerable Items by Reason
- Unassigned Vulnerable Items for remediation
Key Outcomes
- Improved visibility and tracking of vulnerability metrics and key performance indicators (KPIs).
- Enhanced ability to prioritize and manage remediation tasks based on risk, assignment, and status.
- Support for informed decision-making by security and IT teams, including CISOs, through tailored dashboards.
- Streamlined vulnerability response workflows by integrating analytics with remediation efforts and workspaces.
Platform Analytics Solutions contain prepackaged Performance Analytics and Reporting content for use with other ServiceNow AI Platform products. This Analytics and Reporting Solution permits you to track the volume, performance and progress of vulnerabilities from initial analysis and detection to containment, or remediation. You can filter reports by assignment group, exploits, risk rating, or state.
The Performance Analytics for Vulnerability Response content pack is not automatically installed with the Vulnerability Response application. It is available on the ServiceNow Store as a separate subscription.
- Vulnerability Management (PA) dashboard
- Vulnerability Management Chief Information Security Officer (CISO) dashboard
Required roles, installation, and viewing the dashboards
- ServiceNow AI Platform administrator (admin): Install and activate this Analytics and Reporting Solution and make any necessary changes to system properties.
- Performance Analytics administrator (pa_admin): Review the indicators, breakdowns, widgets, and dashboards. Set up and start data collection. Share the dashboards with appropriate stakeholders.
To install this application, see Install and configure the Performance Analytics for Vulnerability Response [PA] application.
Analytics and Reporting Solutions provide all the configuration records required to analyze default applications. Customize these records for use in your production environment. For more information, see Configure Analytics and Reporting Solutions.
To view the vulnerability Management (PA) dashboard, navigate to
To view the Vulnerability Management CISO dashboard, navigate to
Key terms
- Performance analytics (PA)
- Solution that creates management dashboards, reports on KPIs and metrics, and answers key business questions to help increase quality and reduce costs.
- Vulnerable item (VI)
- A security vulnerability reported by a third-party vulnerability scanner that is present on a configuration item (CI).
- Remediation task
- Remediation tasks are created and assigned automatically to IT teams based on the group that is associated with the vulnerable items in a remediation effort. IT teams and remediation owners view remediation tasks in the IT Remediation Workspace. See Vulnerability Response Workspaces for more information
- PA indicator
- Defines a performance measurement taken at regular intervals of a business service, activity, or organizational behavior, for example, Non-Deferred Overdue Critical Vulnerable Items.
- PA indicator source
- Data sets that filter records from one table or database view, for example, VI Active.
View data visualizations in real-time
- Overview tab - Vulnerable Items by Assignment Group
- Vulnerable CIs tab
- Vulnerable Configuration Items (CIs) without Owners
- Retired or Stolen CIs with Active VIs
- Exceptions tab
- Deferred Vulnerable Items by Reason
- Deferral Requests About to Expire
- Deferred Vulnerable Items by CIO Manager
- Remediation tab - Unassigned Vulnerable Items
For more information, see View Performance Analytics for Vulnerability Response [PA] reports in real time.