For some time now, customers have benefited from the Axonius Vulnerability Management Module. They’ve reported a renewed sense of confidence, knowing that they can rely on a credible asset inventory and can easily surface vulnerabilities. The no-code, multi-level Query Wizard has helped customers prioritize vulnerabilities with contextual device data and third-party threat intelligence. As a result, they can respond to each vulnerability with the appropriate level of urgency – prioritizing those with the most significant operational and business impact.
However, better vulnerability prioritization can only go so far without a tie into remediation workflows and risk scoring. Many companies we talk to need a more efficient means of initiating remediation workflows to speed response time and eliminate human error. Likewise, many companies find risk scoring to be an effective benchmark to monitor progress of their overall security posture. That’s why Axonius has expanded vulnerability management capabilities to include automated enforcement actions for vulnerabilities and a custom field creation to calculate bespoke risk scores.
Axonius has integrated our Vulnerability Management Module with our Enforcement Center to produce a powerful vulnerability remediation workflow capability. Customers can now create, save, and use vulnerability queries to initiate an enforcement action or workflow through our Enforcement Center. It brings the vulnerability management lifecycle full circle, giving customers a way to respond to vulnerabilities to reduce risk.
It means that:
For customers already familiar with the Axonius Enforcement Center, you’ll recognize the familiar steps of creating an enforcement set. Create a query, save it, and then use it as the trigger within the Enforcement Center to automatically initiate an action. In this case, however, you’ll be able to use queries that are based on vulnerabilities, instead of devices or users alone.
Queries can be used to prioritize the criticality of vulnerabilities based on the importance of your assets and vulnerability urgency you set for your unique environment. For instance, you can create and save a query that:
When you save the query, it’s available to use as the trigger to an action. When you create an enforcement set, you determine the action to be taken.
You may simply want to tag assets associated with the vulnerability, or notify the appropriate team members and include a CSV file with the necessary information (like, the vulnerability identification number, description, or suggested remediation action) for reference when they address the issue. Alternatively, you may want to open an incident or issue a ticket with a third-party platform that you already use for vulnerability management, such as Jira Service Management, Cherwell, or ServiceNow, so the ticket is officially logged to expedite remediation.
Currently, we have a number of available actions that are pre-configured and available for immediate use:
We’re actively developing additional enforcement actions from within the Vulnerability Management Module, and are building a fuller set of potential enforcement options, similar to those of our more established devices and users management modules. Of course, custom enforcements can always be accommodated.
Many companies we spoke with shared that an overall vulnerability risk score would help them better benchmark and monitor their path to security maturity. The concern, however, is that most pre-defined risk scores don’t meet their needs. Organizations aren’t able to incorporate factors that are uniquely important to them. They prefer risk calculations that they can control and that automatically generate a score that is distinctively their own.
Axonius custom risk scoring does just that. With custom field creation in our Enforcement Center, Axonius enables users to determine their own vulnerability risk score calculation. They can include factors like asset criticality, exposure, and vulnerabilities, or consider assigning a weighted importance to one or more key factors like vulnerability exploitability or even asset location. Once customized, risk scores are automatically generated. Organizations can illustrate the risk score with dashboard charts for easy visual reference.
"Culture is the foundation for any high-performing team. We all process information differently, we listen differently. We come from different backgrounds and experiences. No matter who you are, I want to know that. I want to understand what makes you you and treat you the way you want to be treated, not how I project myself onto you.”
— Jen Easterly, director, Cybersecurity and Infrastructure Security Agency (CISA)
“[Create an environment] where people can understand when they can take time off and not feel like everything is going to fall apart. [Where] they have a plan for their career and how they’re going to grow. [Where] they have time to be with their friends and family enough not to be burned out."
— Deidre Diamond, founder and CEO of CyberSN and Security Diversity
“Actively invite engagement, listen with purpose, and look for signs of burnout. You can't expect everyone to feel equally comfortable expressing an opinion, and so it's important to solicit feedback at times as opposed to always passively expecting it. When you are getting engagement, listen with purpose. Make an effort to not only hear what's being said, but understand and empathize. Lastly, look for signs of burnout. … If you're noticing signs of burnout on the team, look for ways to intervene, like ensuring adequate team resourcing/load balancing to create a healthy work/life balance for everyone, and that team members are able to take PTO."
— Daniel Trauner, senior director of security, Axonius
“We need an environment where failure is not only tolerated, but an understood aspect of innovation. Our attackers are failing forward every single day, [and] we deserve the ability to do the same if we are going to protect our people, data, and organizations.”
— Chris Cochran, co-founder at Hacker Valley Media and creative director at Axonius
41 Madison Avenue, 37th Floor
New York, NY 10010
.png "Dan Trauner blog quote")
