SecurityCenter Dashboards

Tenable Admin

by Josef Weiss
April 17, 2014

Required: Log forwarding to LCE from SecurityCenter and associated Tenable Applications for full functionality

This dashboard provides an administrative overview of Tenable Applications, and highlights potential problems. These six components provide indications to common problems, and allow the administrator to quickly take action to resolve concerns, and to minimize the potential loss of vulnerability or event data.

The components are:

SCAP Audit Summary

by Cody Dumont
April 15, 2014

SCAPAuditSummaryDashboard
The Security Content Automation Protocol (SCAP) is a mixture of community developed security specifications. SecurityCenter users are able to embrace the NIST security automation agenda through more efficient use of devices with SCAP audit file support, and advanced reporting using the dashboards and reports native to SecurityCenter.

CVSS Base Risk Host Matrices

by Cody Dumont
April 10, 2014

CVSS Base Risk Host Matrices Screen Shot
When performing a detailed risk analysis, the use of risk matrices is a common practice. The Forum of Incident Response and Security Teams (FIRST) created the Common Vulnerability Scoring System (CVSS) system to normalize the methodology of analyzing risk. The CVSS provides the open framework for assessing the risk of discovered vulnerabilities. The scoring system has three metric types, the first being “Base Metric”. This dashboard is comprised of four risk analysis matrices. The top two matrices provide analysis of hosts with vulnerabilities with the respective CVSS metric, while the bottom two provide analysis of the percentage of total hosts that are found to have the designated risk level.

NetFlow Monitor Dashboard

by Josef Weiss
April 8, 2014

This dashboard displays event statistics leveraging the capabilities of Tenable Netflow Normalized Events. This event data is correlated to produce a series of pie charts, tables, and trends lines to display statistical data.

Netflow data that is being forwarded to Tenable’s LCE includes ports, source and destination IP address. The components in this dashboard include:

Top Talkers Class B (All Traffic)

CVSS Base Risk Matrices

by Cody Dumont
April 3, 2014

CVSS Base Risk Matrices Screen Shot
The Common Vulnerability Scoring System (CVSS) provides the open framework for assessing the risk of discovered vulnerabilities. The scoring system has three metric types, the first being “Base Metric”. This dashboard provides risk analysis matrices and trend lines showing the change in risk over 25 days.

PCI Status

by Josef Weiss
March 25, 2014

This dashboard leverages Nessus PCI system configuration results to track which PCI controls are compliant or non-compliant. As such, a PCI Audit Policy must be used to achieve results. Audit files are available for download via the Tenable Support Portal for a variety of operating environments.

Council on CyberSecurity 20 Critical Security Controls Dashboard

by Cody Dumont
March 14, 2014

CSC Top 20 Dashboard
This dashboard displays many indicators of the Council on CyberSecurity 20 Critical Security Controls. As published by Council on CyberSecurity, the goal of the 20 Critical Security Controls is to protect assets, infrastructure, and information by strengthening your organization’s defensive posture through continuous automated protection and monitoring. This SecurityCenter Dashboard is comprised of one dashboard with 15 individual components that provide insight to nearly 50 items that directly correlate to the Council on CyberSecurity 20 Critical Security Controls.

Pages