Platform Analytics Solutions for Application Vulnerability Response

  • Release version: Xanadu
  • Updated August 1, 2024
  • 2 minutes to read
    • Summarize
    Summarized using AI
    This content was generated using new OpenAI-powered functionality. Results are provided on an as is basis and are not guaranteed to be accurate or complete.

    Summary of Platform Analytics Solutions for Application Vulnerability Response

    The Platform Analytics Solutions for Application Vulnerability Response provide prepackaged analytics content designed to enhance insights into your Application Vulnerability Management process. This solution is part of the Performance Analytics for Vulnerability Response content pack, which is available as a separate subscription on the ServiceNow Store and is not installed automatically with the Vulnerability Response application.

    Show full answer Show less

    It delivers important metrics and dashboards that help track and analyze application vulnerabilities detected by third-party scanners, enabling effective remediation planning and risk management.

    Key Features

    • Performance Analytics Integration: Utilizes Performance Analytics capabilities to produce dashboards and reports on key performance indicators (KPIs) related to vulnerability response.
    • Application Vulnerable Item (AVI) Tracking: Focuses on vulnerabilities reported on configuration items (CIs) by third-party scanners, highlighting risk levels and remediation status.
    • Predefined Dashboards: Includes dashboards such as the Application Vulnerability Management (PA) dashboard and the My Application Vulnerabilities dashboard, which provide graphical views on AVI activity, remediation trends, and progress.
    • Customizable Trends: Trend analysis periods can be adjusted from 7 days up to all-time data to suit reporting needs.
    • Role-Based Access: The My Application Vulnerabilities dashboard is available only to users in the Security Champion group, ensuring targeted visibility.

    Key Outcomes

    • Gain comprehensive visibility into application vulnerabilities from detection through remediation.
    • Monitor remediation target attainment rates and prioritize high-risk vulnerabilities effectively.
    • Empower administrators and analysts with actionable dashboards that facilitate data-driven decision making.
    • Improve vulnerability management efficiency by focusing on critical KPIs for affected applications and vulnerabilities.

    Roles and Responsibilities

    • ServiceNow AI Platform Administrator: Responsible for installing, activating, and configuring the analytics solution and managing system properties.
    • Performance Analytics Administrator: Manages indicator setup, data collection, dashboard configuration, and sharing insights with stakeholders.

    Next Steps

    To implement and configure this solution, refer to the documentation on installing and configuring the Performance Analytics for Vulnerability Response application. This setup enables you to leverage the full capabilities of the analytics content to enhance your application vulnerability management processes.

    Platform Analytics Solutions contain prepackaged Platform Analytics content for use with other ServiceNow AI Platform products. This Platform Analytics Solution presents important metrics for analyzing your Application Vulnerability Management process.

    Overview

    The Performance Analytics for Vulnerability Response content pack is available on the ServiceNow® Store as a separate subscription. The application is not automatically installed with the Vulnerability Response application. The Application Vulnerability Response content pack is a part of the Performance Analytics for Vulnerability Response content pack.

    For more information about setting up, installing, and configuring your Performance Analytics for Vulnerability Response application, see Install and configure the Performance Analytics for Vulnerability Response [PA] application.

    Key terms

    Performance analytics (PA)
    Solution that creates management dashboards, reports on KPIs and metrics, and answers key business questions to help increase quality and reduce costs.
    Application Vulnerable item (AVI)
    An application vulnerability reported by a third-party vulnerability scanner that is present on a configuration item (CI).​
    PA indicator​
    Defines a performance measurement taken at regular intervals of an activity, or organizational behavior, for example, Top 10 Applications with the Most Critical Application Vulnerable Items.
    PA indicator source
    Data sets that filter records from one table or database view, for example, AVI Active​.
    • The the My Application Vulnerabilities dashboard tracks the volume, performance, and progress of application vulnerabilities from initial analysis/detection to containment, or remediation.
    • View remediation target attainment rates and efficiently determine which application vulnerable items (AVIs) present the most risk to your organization.

    Required roles

    The following roles and tasks are associated with this Solution:
    • ServiceNow AI Platform administrator (admin): Install and activate this Analytics and Reporting Solution and make any necessary changes to system properties.
    • Performance Analytics administrator (pa_admin): Review the indicators, breakdowns, widgets, and dashboards. Set up and start data collection. Share the dashboards with appropriate stakeholders.

    The following dashboards provide a graphical view into AVI activity to help determine remediation plans and status progress. You can focus on the KPIs associated with critical affected applications and high-visibility vulnerabilities.

    • The Application Vulnerability Management (PA) dashboard communicates KPIs for vulnerability risk and prevalence, affected applications, remediation trends, and remediation progress. The default for trends is three months but can be changed to 7 day, one month, 3 months, 6 months, YTD, 1 year, or All.
    • The the My Application Vulnerabilities dashboard tracks the volume, performance, and progress of application vulnerabilities from initial analysis/detection to containment, or remediation.
      Note:
      The My Application Vulnerabilities dashboard is a subset of the Overview dashboard and only available when a member of the Security Champion user group logs into an instance. For more information on the My Application Vulnerabilities dashboard, see My Application Vulnerabilities dashboard.