Risk Meter reports visualize your trending risk over time. As soon as a Risk Meter or Asset Group is created in Cisco Vulnerability Management, nightly captures of data begin to create the metric displayed in the report. You can access reports by clicking on the reports icon in the bottom left corner of any Risk Meter on the Dashboard.
All items in the reports are updated during nightly jobs except for the following items which present live data: Mean time to Remediate, New Vulnerabilities Found, and Total Closed Vulnerabilities.
Note: If you edit the search query for a Risk Meter, you may see changes in asset and vulnerability counts in our reports. Also, if you delete a risk meter, you will delete all historical data previously collected for that meter.
The Risk Group Overview section shows general counts and captures Risk Group scores over time as well as a vulnerability density count. Use the "Export PDF" link at the top of this section to download a PDF version of the full report. In the bottom right corner, you will see True Risk if you have risk accepted any vulnerabilities in this group.
In the right hand corner above the Risk Timelines table, you can select a timeline to apply to the entire report. Reports default to showing activity for the last 30 days.
Hovering over the lines on any timeline graphs will display the specific numbers recorded for that day on the timeline.
Current Risk Information ensures visibility into High Risk assets and vulnerabilities even if the risk score for the Group has been reduced to an Amber rating or lower.
Many elements on the report can be clicked in order to drill down into the details for that item.
New and Closed vulnerabilities are calculated using live data, but restricted by the date range set for the reporting page. As assets go inactive, tags change, and vulnerabilities are reopened (some scanners) these numbers may change.
Mean Time To Remediate is often used to evaluate the efficiency of vulnerability remediation efforts and to confirm teams are meeting set SLAs. It is calculated using the found_on and closed dates as provided by the scanner, and a straight average of the difference between the 2 days grouped by risk.
The final graphs highlight the risk and vulnerability details of the asset group over time.