Britesmith’s Vulnerability Scanning Service (VSS) is a vulnerability scanning technology solution based on industry-leading vulnerability scanning technologies, coupled with a simple to use, intuitive and powerful management interface. Its primary purpose is to allow ease of management of vulnerability information through its lifecycle, and allowing the various stakeholders (from management to technical level) to easily access the information and metrics they most require.
CONTENT BY BRITESMITH
The power of the technology lies in simplified approach to navigation and data representation, including: -
- Ability to logically structure results through site and scan containers – underpinned by highly flexible Role-Based Access Control (RBAC);
- Range of vulnerability data views, including viewing by finding, viewing by target, viewing vulnerability data associated with a unique host system over time, etc. Findings are accompanied by detailed information on the finding itself, various additional information sources, and detailed recommendations;
- Interactive data filters, such as filtering on risk rating or status (reflecting the point in the vulnerability’s lifecycle). Data filters set on one page will seamlessly persist as the application is used, including down to advanced graphs, technical reports, etc. The application also makes use of context-based browsing; meaning when objects (e.g. target systems, findings, etc.) are selected, the next screen is based on the user’s selection. This makes for very intuitive and simplified application navigation;
- Ability to manage vulnerability ratings and lifecycle, through being able to assign custom risk ratings and statuses (some with advanced options) to findings, at various levels of granularity to suit the user’s exact needs. As an example, the risk associated with a vulnerability may be accepted on the application for a particular period of time, where after the status of the vulnerability will automatically be reverted to its original status. The organisation can therefore manage accepted risks, without loosing track of them indefinitely;
- Support for interactive discussion threads, through which stakeholders can make comments and collaborate with others on specific vulnerability findings;
- Quick graphs for easy, one-click access to the most frequently used graphing options;
- Advanced graphing capability, allowing for highly configurable graphs to be produced, based on very granular filtering options. Many of the advanced graphing options have been designed expressly to provide business context and relevance to the data represented in graphs. Graphs can also be viewed based on various representation options, such as single data set in time, trending, etc.;
- Easy access to executive summary reports for automated generation of key graphs and data in a more formalised report format. Executive summary reports can be exported in various file formats, including PDF and Microsoft Excel;
- Granular technical detail reports, often required by technical owners or administrators to simplify their remediation activities. Highly configurable filtering options allow more technically minded users to retrieve, in exportable report format, the technical detail that makes most sense in their context and given their area of responsibility. Exports are available in various file formats, including PDF and Microsoft Excel;
- Powerful user, role and permission management to facilitate granular, yet easy-to-configure access to vulnerability information and functionality; and
- Built-in, advanced security controls to keep your data safe.
Britesmith VSS was built and designed to allow the various vulnerability management stakeholders (e.g. management, technical system owners/custodians, system administrators) to easily and intuitively access the information they need most to make informed vulnerability management decisions.