Business Groups and Asset Tags

Learn about the tools to manage and prioritize vulnerabilities based on your business context.

Updated over a week ago

Overview

This essential and comprehensive article teaches you about Business Groups and Asset tags in the Vulcan Platform. We'll start by introducing you to the meaning, value, and impact of Business Groups and Asset tags. Then, you’ll learn how Business Groups and Asset tags are integral to managing vulnerabilities and prioritizing remediation. Later, you’ll learn how to create and manage Business Groups and Asset tags.

Value and Impact

Business Groups and Asset Tags bring your organization's business context into the Vulcan Platform and impact your entire vulnerability management and security posture.

Before we jump into functionality and implementation, let’s talk about why it is essential to set up Business Groups in your environment and how they differ from Asset Tags.

Asset data is one of the factors in prioritizing risk and managing vulnerabilities.

Your organization has hundreds and thousands of assets. Each asset has a purpose, users, priority profile, and cyber security impact. Now imagine that you pull all these assets into the Vulcan Platform without categorizing or intersecting them. Messy, isn’t it? You could never track your cyber security posture and take remediation actions efficiently without making some order first. This is why Vulcan created the Asset Tags and Business Groups management features - the tools to categorize and contextualize your assets so you can prioritize vulnerability remediation based on your business context.

Business Group vs. Asset Tag

What’s an Asset Tag?

An Asset Tag is a basic piece of information in a tag (#) form attached to an asset.

Asset Tags allow you to organize your assets based on dynamically applied rules. An asset can have multiple tags attached to it. An Asset tag can represent a business or technical info associated with the asset, for example, #external-facing or #https-server. Asset tags can be either created in the Vulcan Platform or imported through connectors. Asset tags are mostly used for filtering and identifying assets across the Vulcan Platform. Usually, asset tags are used to create a Business Group.

There are 2 types of Asset Tags, Imported Asset Tags and Manually Created Asset Tags (Vulcan Tags).

What’s a Business Group?

You can think of a Business Group as a collection of assets, defined by you, that represents a Business Unit in your organization. Business Groups segment your environment into more manageable, meaningful chunks. For example, "Finance" or "Production". A Business Group can contain all the assets that are associated with that business unit. Unlike Asset Tags, Business Groups are way more manageable, practiced, and impactful across the Vulcan Platform views, and are used in several capabilities and features. For example, you can define SLA policies per Business Group and impact your entire vulnerability management and prioritization.

Create Business Groups to reflect the organizational structure, different technologies, geographic location, departments, or anything that helps you categorize and prioritize assets in your organization.
Check out this best practice we created of Key Considerations when creating Business Groups.


Bottom line, "Business Groups" is the tool to prioritize vulnerability management by categorizing and contextualizing your assets into organizational business units.

Usage and utilization across the Vulcan Platform

Asset Tag Usage

Business Group Usage

  1. Filter Analytic reports to view data cuts focusing on your most important Business Groups.

  2. View Analytic widgets, trends, and metrics that are Business-Groups-oriented, such as
    Assets by Business Groups, SPR Compliance by Business Group,

    Campaign due-date compliance by Business Groups, Most SPR Compliant Business Groups, Most SPR Vulnerable Business Groups,

    Vulnerability Instances Exceeded SLA by Business Group and Risk Level, and much more.

  3. Filter Dashboard to view overall risk, tasks, and actions calculated and performed by the Vulcan platform per Business Group.

Managing Asset Tags

Managing Business Groups

Did this answer your question?