Remediation Target Rules

jslee102
Tera Contributor

So, my vuln analysts are wondering if there is any way to have the remediation target use a base of when a VIT is assigned to a service now group.  The reason being that the remediation teams are complaining because as certain items get assigned (like we keep. a bunch of lows unassigned, but something changes to make it high), they get the VIT and it is already out of remediation target date.

 

Any thoughts on how that would work?

3 REPLIES 3

Kevin Lillis
Tera Expert

We've run into this too a few times.  Our experience is slightly different in that we assign all VITs regardless of severity, but we don't necessarily require remediation on all.  But whether we require remediation on all or not, there are scenarios with the Risk Rating changes from a Low (not required to remediate) or a Medium (3 months to remediate) to a Critical (15 days to remediate) and once that happens, it is already overdue and the status changes to Missed Target immediately upon changing the Risk Rating.

Interested if there is a way to have the clock start from the point the escalation in Risk Rating takes place.

HMR00
Tera Contributor

so u can a create a business rule to reset the open/last open date upon change of assignment group, this will cover re-assignment use case as well.  Also, only open, in progress may only be considered !

 

Hope this help

I am guessing we could also create a business rule that states if the Risk Rating of the VIT has increased (ex. Low to High), then recalculate the Remediation Target?  Do you know if that is possible?