Configure OT vulnerability risk rollup calculator
Use the OT vulnerability risk rollup calculator to calculate the risk score of the OT devices at each level of the equipment model. The overall risk score is rolled up to the parent equipment model entity.
Before you begin
- Calculate the risk score for all the equipment model entities by executing the scheduled job.Note:The risk score calculation for all the equipment model entities is only for the subsequent run of the daily schedule job.
- Check that the Service Populator column in the Equipment Model Entities list is set to OTDynamicManualServicePopulator by navigating to . If it's set to other values, you must execute the Update ISA entity service populator on-demand job:
- Navigate to .
- Select the Update ISA entity service populator job.
- Select Execute Now.
Note:If you don't see the Service Populator column in the Equipment Model Entities list, you can add it by personalizing the list. For more information, see Personalize a list. - Role required: admin or sn_vul.manage_risk_score_configuration
About this task
For this step, refer to the Vulnerability Rollup Calculators with OT vulnerability calculator shipped with the Operational Technology Vulnerability Response application demo data.
For more information, see Vulnerability Response Rollup Calculators.
To calculate the risk score for the equipment model entity, set up the weights for
these fields:
- Maximum risk score of the Vulnerable Items (VITs) associated to the equipment model entity.
- Average risk score of the VITs associated to the equipment model entity.
- Number of vulnerable items per equipment model entity.
Procedure
- Navigate to .
- Navigate to .
- From the Roll-up calculators list, select Equipment Model Entity Rollup.
- If required, in the Roll-up weightage section, update the weight for each criterion.
- Select Update.
What to do next
Now, you can calculate the risk associated at a level for your equipment model entities.
- Navigate to .
- Calculate the risk rollup for all equipment model entities:
- Select Configure for the Risk roll-up configuration task.
- In the Security Exposure Management Workspace, follow the steps described in the Help Center for this section.
- Configure the Risk Rollup for VITs by Equipment Model Entity scheduled job:
- Select Configure for the Daily Schedule job for risk roll up task.
- Security Exposure Management Workspace, follow the steps described in the Help Center for this section.Note:By default, the job is set to run daily. You can change this to fit your business needs by editing the Run, Time zone, and Time fields.
- To avoid getting the wrong risk score and rating for remediation tasks, change the Table field in the OT Devices with No sites Assigned Rollup record:
- Navigate to .
- In the Run script field, add the following script.
var gr = new GlideRecord('sn_vul_rollup'); gr.get('sys_id','24973dc4939e42900b1566f4548918eb'); gr.table = 'sn_ot_metric'; gr.update(); - Select Run script.
- To check the value of the Table field in the OT Devices with No sites Assigned Rollup record and run the scheduled job, navigate to .
- Select the OT Devices with No sites Assigned Rollup record.
- Ensure that the Table field is set to OT Metric [sn_ot_metric].
- Run the scheduled job.
After running the job, the correct VIT risk scores and ratings are rolled up to the remediation tasks.
- Configure the entities for risk score roll-up:
- Select Configure for the Set All Entities for Risk score Roll-Up Job task.
- Security Exposure Management Workspace, follow the steps described in the Help Center.