Security Exposure Management Workspace Components

Release version: Xanadu

Updated July 28, 2025

2 minutes to read

When you activate the Unified Security Exposure Management (USEM) and Security Exposure Management Workspace applications, the system installs specific key components including tables, user roles, and scheduled jobs to support the operations required for assessing and managing security exposures.

The following applications install Security Exposure Management-specific components:

Unified Security Exposure Management
Security Exposure Management Workspace
Administration for Security Exposure Management
Risk Scoring for Security Exposure Management
Remediation for Attack Surface Management
Exception Management for Unified Security Exposure Management

USEM also depends on components provided by some existing security operations applications. For details of those existing components, see:

To view the full list of installed components, use the Application Files table. For instructions, see Find components installed with an application.

Deprecated Components

Some tables and scheduled jobs from the existing security operations applications are not included in USEM, as they have been deprecated.

The following tables from the existing applications have been deprecated and have corresponding replacements or references in USEM.


Deprecated Tables	Mapped Table in Security Exposure Management
Security Calculator Group [sn_sec_cmn_calculator_group]	Risk Calculator [sn_sec_calculator_group]
Vulnerability Calculator [sn_vul_calculator_group]
Risk Calculators [sn_vulc_calculator_group]
Security Calculator [sn_sec_cmn_calculator]	Risk Calculator Rule [sn_sec_calculator_rule]
Vulnerability Risk Rule [sn_vul_calc_risk]
Calculator [sn_vulc_calculator_risk_score]
Configuration Compliance Risk Rule [sn_vulc_risk_rule]
Security Classification Group [sn_sec_cmn_classification_group]	Classification Group [sn_sec_wf_classification_group]
Classification Group [sn_vul_classification_group]	Classification Group [sn_sec_wf_classification_group]
Security Classification Rule [sn_sec_cmn_classification_rule]	Classification Rule [sn_sec_wf_classification_rule]
Classification Rule [sn_vul_classification_rule]	Classification Rule [sn_sec_wf_classification_rule]
Exception Management Configuration [sn_sec_cmn_exception_config]	Exception Management Configuration [sn_sec_exception_config]
Exception Management Configuration [sn_vul_exception_config]
Questionnaire Configuration [sn_sec_cmn_questionnaire_config]	Questionnaire Configuration [sn_sec_exception_questionnaire_config]
Policy Exception Reason Mapping [sn_sec_cmn_policy_reason_mapping]	Policy Exception Reason Mapping [sn_sec_exception_policy_reason_mapping]
Policy Exception Reason Mapping [sn_vul_policy_reason_mapping]
Vulnerability Assignment Rule [sn_vul_assignment_rule]	Assignment Rule [sn_sec_wf_assign_rule]
Assignment Rule [sn_vulc_assignment_rule]	Assignment Rule [sn_sec_wf_assign_rule]
Vulnerability Calculator Rule [sn_vul_calculator]	Remediation Target Rules [sn_sec_wf_ttr_rule]
Remediation Target Rule [sn_vul_ttr_rule]
Remediation Target Rule [sn_vulc_ttr_rule]
Risk rule field [sn_vul_risk_field]	Risk rule field [sn_sec_calculator_risk_field]
Risk rule field [sn_vulc_risk_rule_field]	Risk rule field [sn_sec_calculator_risk_field]
Vulnerability Remediation Status [sn_vul_m2m_ttr_status]	Remediation Status [sn_sec_wf_m2m_ttr_status]
Test Result Remediation Status [sn_vulc_m2m_ttr_status]	Remediation Status [sn_sec_wf_m2m_ttr_status]
Vulnerability Rollup Calculator [sn_vul_rollup]	Rollup Config [sn_sec_wf_rollup_config]
Risk Score Rollup Calculator [sn_vulc_risk_score_rollup]	Rollup Config [sn_sec_wf_rollup_config]
Exception Rule [sn_vul_auto_exception_rule]	Exception Rule [sn_sec_exception_rule]
Auto Exception Rules [sn_vulc_auto_exception_rule]	Exception Rule [sn_sec_exception_rule]
Vulnerability State Change Approval [sn_vul_change_approval]	Change Approval [sn_sec_exception_change_approval]
State Change Approval [sn_vulc_state_change_approval]	Change Approval [sn_sec_exception_change_approval]
Vulnerability Compensating Control relationship [sn_vul_m2m_entry_compensating_control]	Vulnerability Compensating Control relationship [sn_vul_cmn_m2m_entry_compensating_control]
Auto-Close stale Test Results [sn_vulc_auto_close_stale_config]	Auto-close Rule [sn_vul_cmn_auto_close_rule]


Deprecated Scheduled Jobs
Populate risk fields for risk rules
Rerun calculators
Reapply all vulnerability assignment rules
Send unassignment notification
Run severity calculator after vulnerability entry promotion
Evaluate remediation targets
Reassignment count for assignment rules
Remove Duplicate VI Remediation Status
Copy customized request exception questionnaire to compensating control
Rolldown until date from vulnerability group to vulnerable item
Check Vulnerable Item and Groups Deferment Expiration
Check Risk Mitigation Expiration
Associate existing AVIs with Auto Exception Rule
Associate existing VIs with Auto Exception Rule
Migrate the background jobs
Update Risk Rating for Test Results
Evaluate and notify remediation targets
Associate existing TRs with Auto Exception Rule
Check Remediation Tasks and Test Result Deferment Expiration
Associate existing Container VIs with Auto Exception Rule
Check Container Vulnerable Item Deferment Expiration