Intro and Demo
The Vulcan Platform Dashboard module allows you, from managers to executives, to receive a coherent and elaborative view of the overall risk, tasks, and actions calculated and performed by the Vulcan platform.
Watch this updated Vulcan Cyber demo focused on cyber risk measurement, management, and mitigation.
Security Posture Rating
The SPR widget displays your SPR calculated according to the threshold you defined. It indicates the percentage of assets complying with your maximum SPR risk threshold.
The Risk Mass indicator is a sum of all the calculated atomic risks of all vulnerability instances at a given time in your organization. The risk mass indicates the amount of all maximum risk scores gathered from all instances. Risk mass in Business Groups indicates the number of maximum risks gathered per a specific Business Group. As a CISO and security personnel, you need to aim to lower your risk mass by remediating vulnerabilities.
The Company ROI indicator shows how many person-hours your organization is saving by utilizing the Vulcan Platform.
Return-of-Investment of person-hours your Cyber Security department and organization is saving by utilizing the Vulcan Platform. The more you get out of the Vulcan Platform, the more money you save on Cyber Security procedures and man-hours.
The "Saving" is evaluated by calculating the amount of data consolidated and the number of actions performed through the Vulcan Platform.
How is the ROI calculated?
Company ROI is composed of two main components:
Platform ROI (incremented monthly) + Actions ROI (calculated daily) = Company ROI
At the beginning of each month, the Vulcan Platform calculates how many hours it would have taken a single person to manually handle all of the data retrieved from the multiple scanners. This includes analyzing, correlating, prioritizing, researching fixes, and generating reports.
Let's look at the following calculation example:
16,000 ingested assets + 40,000 ingested vulnerability instances from multiple scanners = 56,000 data units
56,000 data units * 0.0008 h/data point = 45 person hours = 1 week of work of a single person
Examples of automated actions include opening a task and assigning it, populating the relevant vulnerability information, gathering information on relevant assets and fixes, and much more.
One Vulcan automated action = 0.2 person-hours
Raw Attack Surface Data
This graph helps you understand which sources (connectors) retrieve the largest amount of assets and/or vulnerabilities from your organization. It visualizes the amount of raw data ingested per connector into the Vulcan Platform before any consolidation and aggregation by the Vulcan Platform special engines.
Assets Reduction Flow
Raw Assets: Overall sum up of all the assets collected from all connectors before merging and deduplication.
Unique Assets: Number of unique assets after merging and deduplication after being digested by the Vulcan Platform special engines
Prioritized Risk: Number of unique assets whose prioritized risk score is above the SPR threshold. This is where data reduction happens - the Vulcan Platform engines significantly reduce the overwhelming assets data to what matters, the assets you need to look at and focus on.
Vulnerability Reduction Flow
Raw Vulnerability Instances: Overall sum up of all the vulnerabilities collected from all connectors before merging and deduplication.
Scanner Prioritized: Overall sum of all the collected CVSS with a raw risk score equal to or more than 7. The number you see in this sum is significantly higher than the Vulcan Prioritized Vulnerabilities because it doesn't include any further risk calculations or consolidations performed by the Vulcan engine.
Prioritized Risk: The number of vulnerability instances at prioritized risk of High or Critical based on all the metrics and risk calculations performed exclusively by the Vulcan Platform engine (including Threat Intelligence, Tags, Threats, etc.)
Prioritize Vulnerabilities by
Unique prioritized vulnerabilities are categorized and prioritized by Risk score, Threat Intelligence sources, SLA breaching, and available fixes.
Use this widget to access unique vulnerabilities prioritized by different security dimensions quickly. For example, click on "Show hot" to show all the vulnerabilities that are mostly discussed by the cyber community. Another example is accessing all the vulnerabilities that have an available Patch ("With Patches"), so you can easily get them off the list by remediating using available fixes.
You can also toggle the "Vulnerabilities above Risk Threshold" to reduce the vulnerabilities list and focus only on the ones above the SPR threshold.
The Zero-day widget shows potentially critical or high severity vulnerabilities with no available official patch or fix from the vendor. You can click on "show vulnerabilities" for more details.
Once a patch or a fix becomes available, the vulnerability will disappear from the Zero-Day display.
Stay Ahead of Log4shell
Track Log4shell vulnerabilities in your environment by clicking on the Track button on the widget.
Top Business Groups by
Through this heat map, you can view the top Business Groups with the highest Risk Mass or SPR. Use this heat-map to prioritize the Business Groups that require more attention.
The blocks' color and size correlate with the SPR score and Risk Mass.
Block size: Reflects the Risk Mass. The larger the rectangle, the larger the Risk Mass is.
Block color: Reflects the SPR risk score (Critical to Low)
What happens when you filter Business Groups by Risk Mass?
You get to preview the number of maximum risks (Risk Mass) gathered per a specific Business Group. The larger the Business Group's square/rectangle, the larger the Risk Mass is, i.e., a higher count of assets with higher risk. The color indication reflects the SPR risk level.
As a CISO and security personnel, you need to aim to lower your risk mass by remediating vulnerabilities. Arrange the BGs by Risk Mass to view the business groups that have the highest risk mass and require immediate remediation.
What happens when you filter Business Groups by SPR?
You get to preview the Business Groups colored by SPR risk level (Critical, High, Medium, Low) to determine which Business Group has the highest SPR risk level, so you prioritize it accordingly. This is why when the SPR view is toggled, you'll probably see a lot of 'red block'. This means that there was almost no remediation done for these business groups and that they have a lot of assets with vulnerabilities with risks above the SPR threshold.
The % of the SPR shown in each block represents the percentage of the assets that meet the risk criteria. For example, 0% SPR means that none of the assets in this Business Group meets the risk criteria - which means that all the assets in this Business Group are above the SPR threshold = Critical risk score as indicated with a red block.
Insight on the status of the overall campaign. Click to track your active campaigns.
This widget is your way to track the teams fixing vulnerabilities on your assets.
Top Highest-Impact Campaigns
Top 5 campaigns with the highest risk-mass impact on the organization. This widget presents the top in-progress campaigns that are fixing many risks, so you can easily track the progress from the dashboard.
It also brings more awareness to the use of campaigns to make your security program more efficient.