Skip to main content
All CollectionsBest PracticesAdmin User
Business Groups Structuring - Best Practice
Business Groups Structuring - Best Practice
Updated over a week ago

Target Audience

System Admin

About

What's the rationale behind this best practice?

Business Groups in the Vulcan Platform are a dynamic tool for organizing assets based on organizational needs. By thoughtfully designing Business Groups to align with the organization's structure and priorities, users can unlock the full potential of Vulcan Platform features for effective vulnerability management and reporting.


What's the goal of this best practice?

In the Vulcan Platform, Business Groups play a pivotal role in efficiently managing and governing assets within an organization. These groups serve as a powerful tool to categorize and contextualize assets, allowing for streamlined vulnerability management and prioritization. This article outlines best practices for creating Business Groups based on the organizational structure and priorities.

What purpose do Business Groups serve?

Reflect the Organizational Hierarchy:

Business Groups should mirror the organizational hierarchy or business units. This reflection enables a clear understanding of asset priorities and impacts within the organization.

Mirror Organizational Units:

The goal is to align Business Groups as closely as possible with existing organizational units. This alignment ensures that the Vulcan Platform hierarchy represents the real-world structure and usage of assets.

What are the benefits of Business Groups?

Prioritizing Remediation: Take targeted remediation actions by focusing on specific Business Groups. For example, prioritize vulnerabilities in the "Production" Business Group to address critical issues promptly.

View: Use Business Groups to view and filter Assets and Vulnerabilities by Business Group all across the Vulcan Platform UI.

Monitoring through Analytics: Filter Vulcan Analytics reports by Business Group to view group-focused stats and data. For example, filter reports by Business Group to monitor assets by region, department, or other criteria.

Reporting: Use existing reports or generate customized reports by Business Group to share insights with stakeholders or management. This enables clear communication and collaboration on vulnerability management efforts.

Best Practice Workflows

Building Business Groups - Key Considerations

System administrators can create a customized hierarchy of Business Groups based on their organization's needs. This may involve:

  • Establishing Parent Business Groups (e.g., EMEA, APAC) and organizing children groups by OS, departments, or other relevant criteria.

  • Continuously adding children groups to reflect the granularity required for effective asset management.

To create effective Business Groups, system administrators should consider the following questions:

Reporting Preferences: How does the organization prefer to see reports? Create Business Groups based on reporting needs, ensuring a seamless representation of asset data. For example,

Remediation Management: How does the organization want to manage and track remediation? Business Groups can be structured to align with remediation teams or processes, facilitating efficient vulnerability resolution.

Organizational Hierarchy: Does the organization have an existing hierarchy or structure? Consider the departments, teams, or business units responsible for or impacted by addressing vulnerabilities. Reflect this structure in Business Groups.

Applications and Integrations: Consider the applications in use and any integrations. Business Groups can be organized based on specific applications, helping manage vulnerabilities related to different software solutions.

Geographic Regions: If applicable, organize Business Groups by geographic regions (e.g., APAC, EMEA, US). This helps manage assets with regional dependencies or compliance requirements.

Operating Systems: Divide Business Groups based on operating systems, such as "Windows Patching Team" or "Linux Patching Team." This facilitates targeted vulnerability management for specific platforms.

Departments: Consider creating Business Groups for different departments (e.g., R&D, DevOps) to tailor vulnerability management strategies to each unit's unique requirements.

Endpoint Business Units: For endpoint assets, create Business Groups aligned with business units (e.g., Finance, HR, Customer Success). This allows for focused vulnerability management within specific departments.

Creating Business Groups

We've created a dedicated technical article that explains step-by-step how to create and manage Business Groups in the Vulcan Platform. Before you start creating your business groups, review the key considerations to help you decide on the hierarchy and context of the Business Groups you wish to create.

Did this answer your question?