Monthly Executive Report

by Cody Dumont
January 7, 2014

This report is produced by Tenable SecurityCenter and provides a high-level executive review of vulnerability detection over the past 30 days. This report provides executive-level directors and managers with a detailed understanding of the vulnerability risk management program via a series of trend graphs, charts, tables, and other reporting components. A CISO can use this report in monthly meetings to communicate the status of current risk levels to other members of the organization.

The report is available in the SecurityCenter 4.7 Report app feed, an app store of dashboards, reports and assets.  The report requirements are:

  • SecurityCenter 4.7.1
  • Nessus 5.2.3
  • PVS 4.0

Chapters

Vulnerability Discovery & Mitigation - This chapter provides two tables to communicate new vulnerabilities and mitigated risk. Each table is comprised of 4 rows that reference a time range in which vulnerability is discovered, and columns that indicate the severity levels. The numbers in each cell indicate the number of hosts that match the respective query.

Corporate Vulnerability Trends and Indexes - This chapter provides a series of pie charts, area charts, and line graphs which depict the vulnerability status over the past 30 days. This information provides management with a visual representation of new vulnerabilities over the past 30 days.

Highest Ranked Assets - This chapter provides a summary of the top 10 assets in the network based on total vulnerabilities found. The data will help management see vulnerabilities based on similar devices or operating systems. Assets can be used to group similar devices together, or devices with some attribute in common.

Highest Vulnerable Systems in the Network - This chapter provides a summary of the top 10 most vulnerable systems in the network or asset group based on total critical severity vulnerabilities found. The data will help management see systems that require the most immediate attention.