OTbase includes functionality for vulnerability analytics, and a workflow for vulnerability management. For the following discussion it is assumed that OTbase Inventory is configured properly to automatically import vulnerability definitions, and Microsoft patch data.
Within OTbase Inventory, the following functions are available for vulnerability management:
- List of all CVEs that affect your installed base (CVE list). This list can be filtered to only cover a specific site or network, only vulnerabilities of a certain priority or publication date, and so on.
- List of all individual vulnerabilities that affect your installed base.
- List of vulnerable devices, sorted by risk score (device list).
- List of installed software products, sorted by their vulnerability score.
- Chart indicating how vulnerabilities change over time, and in respect to patch cycles.
- Remediation task workflow that allows you to define remediation tasks, and assign those tasks to idndividuals.
You will also see vulnerability information in device profiles and product profiles.
Add-on products
There are additional add-ons to Asset Center that assist in vulnerability management:
- The OTbase Splunk Technical Add-On allows you to perform vulnerability analysis of your OT asset data in Splunk
- The OTbase Connector for Power BI allows you to analyze your vulnerability data interactively, and produce a ton of reports in your company's favorite format.
Videos
Comments
0 comments
Please sign in to leave a comment.