Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Historic Patch Mitigation Status

by Megan Daudelin
January 15, 2016

Patch management is a key responsibility of any information security team. By applying patches regularly, security teams can reduce the level of risk that their organization is exposed to. Integrating Nessus with Tenable.sc allows analysts to monitor the application of patches and resolution of vulnerabilities in their network.

The Historic Patch Mitigation Status dashboard monitors vulnerability mitigation on an organization’s network in order to help security teams understand the effectiveness of their patch management efforts. Increased visibility into vulnerability mitigation can assist security teams in implementing improved patch application procedures as needed. By monitoring the patterns of patch application and vulnerability mitigation, security teams can better understand the effectiveness of their efforts and make adjustments as necessary in order to more effectively secure their network.

The components in this dashboard display data about the mitigation dates of detected vulnerabilities. Two filters are leveraged: “Days to Mitigate” and “Days Since Mitigation.” The components depicting patch rates use the “Days to Mitigate” filter to count vulnerabilities that were mitigated within the specified number of days of initial discovery. The count is based on the difference between the “First Discovered” date and the “Mitigated On” date. The components that depict patch dates use the “Days Since Mitigation” filter to count vulnerabilities that were mitigated within the specified timeframe. The count is based on the number of days between the current date and the “Mitigated On” date. Together, the components in this dashboard can assist security teams with understanding the effectiveness of their patch application and vulnerability remediation efforts.

This dashboard is available in the Tenable.sc Feed, a comprehensive collection of dashboards, reports, Assurance Report Cards and assets. This dashboard can be easily located in the Tenable.sc Feed under the category Monitoring. The dashboard requirements are:

  • Tenable.sc 4.8.2
  • Nessus 8.4.0

Tenable.sc Continuous View (CV) provides continuous network monitoring, vulnerability identification, risk reduction, and compliance monitoring. Nessus is continuously updated with information about advanced threats and zero-day vulnerabilities, and new types of regulatory compliance configuration audits. By integrating with Nessus, Tenable.sc CV’s continuous network monitoring is able to track vulnerabilities and mitigations across the enterprise.

Listed below are the included components:

  • Host Count – Patch Rate 0 – 20 Days: The Host Count – Patch Rate 0 – 20 Days matrix displays the number of vulnerabilities mitigated within 20 days of initial detection.
  • Host Count – Patch Date 0 – 20 Days: The Host Count – Patch Date 0 – 20 Days matrix displays the number of vulnerabilities patched within the last 20 days.
  • Host Count – Patch Rate 21 – 60 Days: The Host Count – Patch Rate 21 – 60 Days Matrix displays the number of vulnerabilities mitigated between 21 and 60 days of initial detection.
  • Host Count – Patch Date 21 – 60 Days: The Host Count – Patch Date 21 – 60 Days matrix displays the number of vulnerabilities patched between 21 and 60 days ago.
  • Host Count – Patch Rate > 60 Days: The Host Count – Patch Rate > 60 Days Matrix displays the number of vulnerabilities mitigated more than 60 days since initial detection.
  • Host Count – Patch Date > 60 Days: The Host Count – Patch Date > 60 Days matrix displays the number of vulnerabilities patched more than 60 days ago.
Try for Free Buy Now

Try Tenable.io

FREE FOR 60 DAYS

Enjoy full access to a modern, cloud-based vulnerability management platform that enables you to see and track all of your assets with unmatched accuracy. Sign up now.

Buy Tenable.io

Enjoy full access to a modern, cloud-based vulnerability management platform that enables you to see and track all of your assets with unmatched accuracy. Purchase your annual subscription today.

65 assets

$2,190.00

Buy Now

Try for Free Buy Now

Try Nessus Professional Free

FREE FOR 7 DAYS

Nessus® is the most comprehensive vulnerability scanner on the market today. Nessus Professional will help automate the vulnerability scanning process, save time in your compliance cycles and allow you to engage your IT team.

Buy Nessus Professional

Nessus® is the most comprehensive vulnerability scanner on the market today. Nessus Professional will help automate the vulnerability scanning process, save time in your compliance cycles and allow you to engage your IT team.

Buy a multi-year license and save

Try for Free Buy Now

Try Tenable.io Web Application Scanning

FREE FOR 60 DAYS

Enjoy full access to our latest web application scanning offering designed for modern applications as part of the Tenable.io platform. Safely scan your entire online portfolio for vulnerabilities with a high degree of accuracy without heavy manual effort or disruption to critical web applications. Sign up now.

Buy Tenable.io Web Application Scanning

Enjoy full access to a modern, cloud-based vulnerability management platform that enables you to see and track all of your assets with unmatched accuracy. Purchase your annual subscription today.

5 FQDNs

$3,578.00

Buy Now

Try for Free Contact Sales

Try Tenable.io Container Security

FREE FOR 60 DAYS

Enjoy full access to the only container security offering integrated into a vulnerability management platform. Monitor container images for vulnerabilities, malware and policy violations. Integrate with continuous integration and continuous deployment (CI/CD) systems to support DevOps practices, strengthen security and support enterprise policy compliance.

Buy Tenable.io Container Security

Tenable.io Container Security seamlessly and securely enables DevOps processes by providing visibility into the security of container images – including vulnerabilities, malware and policy violations – through integration with the build process.

Learn More about Industrial Security

Get a Demo of Tenable.sc

Please fill out the form below with your contact information and a sales representative will contact you shortly to schedule a demo. You may also include a short comment (limited to 255 characters). Please note that fields with asterisks (*) are mandatory.