The SLA Tracking Analytics provides visibility into the progress of assets’ SLA compliance and SLA-exceeding vulnerabilities in the security operation.

First, ensure you cover the Analytics Filters and Data Drilling to learn about the expected behavior of the trends and presented data.

The SLA KPIs are the first and main widgets you encounter when entering the SLA Tracking Analytics report.

What each KPI represents?

A widget that shows how many vulnerabilities are *about to approach the SLA compliance across all Business Groups / SLA policies.

Example:

Let's assume you've set 10 days SLA for Critical vulnerabilities to be fixed.

In the example below, 75 vulnerabilities will reach SLA in 2 days (20% of 10 days is two days).

* “about to approach“ = 20% of the SLA set under SLA Policies.

A trend that shows the % of SLA-compliant assets over time. You can use the data-drilling buttons to dig deeper into the data.

This graph shows the number of vulnerability instances exceeding SLA by all risk levels. You can click on a specific Risk level to highlight the relevant data or use the data-drilling buttons to dig deeper into the data.

In this trend, you should always strive for a going-down graph, which means the number of vulnerability instances exceeding SLA is getting lesser, especially the Critical and High ones.

This trend digs deeper into how many days the vulnerability instances have been exceeding the SLA.

For example, the trend below shows that there are currently 200 vulnerability instances in Critical Risk in a "Exceeding SLA" state for 4-10 days.

You can filter to show only a specific risk level to better understand the number of vulnerability instances in an "Exceeding SLA" status, particularly in High and Critical risk levels.

A trend that shows you the number of All, Exceeding, or Compliant vulnerability instances per Business Group.

By default, the trend is set to show "All" vulnerability instances per each Business Group. To better understand the scope of vulnerability instances exceeding SLA per business group, you can filter to show Critical or High vulnerability instances that are Exceeding SLA status.
In the example video below, you can learn that the External Facing Biz Group has 12,524 vulnerability instances in the Critical risk level that are Exceeding SLA and 880 vulnerability instances in the Critical risk level that are SLA-compliant.

A dynamic detailed list of unique vulnerabilities posing a risk. The list displays only vulnerabilities in the statuses "Vulnerable" and "In Progress". Click on the vulnerability hyperlink for more details and to take remediation action. This dynamic list responds to selecting other data elements in other widgets.

Read our Analytics FAQ and Data Validation article here.