The documentation set for this product strives to use bias-free language. For the purposes of this documentation set, bias-free is defined as language that does not imply discrimination based on age, disability, gender, racial identity, ethnic identity, sexual orientation, socioeconomic status, and intersectionality. Exceptions may be present in the documentation due to language that is hardcoded in the user interfaces of the product software, language used based on RFP documentation, or language that is used by a referenced third-party product. Learn more about how Cisco is using Inclusive Language.
Advance your risk-based vulnerability management program to the next level
Risk-based vulnerability management is a journey—one that leads organizations through a systematic evolution of their practices and program philosophy. For organizations who find themselves on the more mature side, a purposefully designed, enhanced package of the Cisco Vulnerability Management (formerly Kenna.VM) technology is available. The Cisco Vulnerability Management Premier tier offers the benefits of the standard Cisco Vulnerability Management platform deployment (like the ability to connect to any third-party data sources), as well as additional capabilities including remediation analytics and scoring, zero-day vulnerability intelligence from Cisco Talos, and access to Cisco’s vulnerability intelligence via an API or intuitive User Interface (UI).
With Cisco Vulnerability Management Premier, you can:
● Integrate with vulnerability scanners, endpoint security tools, and other data sources to expand your visibility into risk.
● Measure how well the organization is addressing risk with remediation scoring.
● Respond to zero-day vulnerabilities as soon as they appear with intelligence from Cisco Talos.
● Enhance vulnerability management and other security workflows with direct access to Cisco’s intelligence via an API.
● Mature your risk-based vulnerability management program with a feature set designed for advanced programs.
Remediation analytics and scoring
Cisco Vulnerability Management Premier features data-science driven analysis of an organization’s remediation performance, providing a Remediation Score that quantifies how well the organization is addressing risk overall. This remediation score is further broken down to four components: remediation coverage, efficiency, velocity, and capacity. Understanding how well risk is being handled across the business can guide security teams on how and where to improve remediation.
| Cisco Vulnerability Management |
Advantage |
Premier |
| Vulnerability Data Ingestion |
ü |
ü |
| Risk Meters (Asset Groups) |
ü |
ü |
| Scoring for Vulnerabilities, Assets, and Risk Meters |
ü |
ü |
| Top Fix Groups |
ü |
ü |
| Ticketing System Integration |
ü |
ü |
| Risk Meter Reporting |
ü |
ü |
| Peer Benchmarking (Risk Score, MTTR, Vulnerability Density) |
ü |
ü |
| Application Security module (Available Add-On) |
ü |
ü |
| Remediation Analytics and Scoring |
|
ü |
| Zero-Day Intelligence Powered by Talos |
|
ü |
| Vulnerability Intelligence Tab within User Interface |
|
ü |
| Vulnerability Intelligence API |
|
ü |
Zero-day vulnerability intelligence, powered by Cisco Talos
Cisco Vulnerability Management Premier users have access to zero-day intelligence curated by the Cisco Talos research team. Zero-day vulnerabilities identified by Talos and found in a customer’s environment will appear in the Cisco Vulnerability Management UI, where users can see a description of the advisory, Snort rule ID numbers, and associated Cisco Security Risk Score. Customers can filter to isolate all zero-day vulnerabilities within a risk meter, allowing them to quickly view and understand new vulnerabilities within their environment.
Zero-day vulnerability intelligence via an API or UI
Cisco Vulnerability Intelligence gives security teams access to the industry’s richest consolidation of vulnerability intelligence via an API or UI. Cisco’s intelligence incorporates CVE data from more than 19 threat and exploit intelligence feeds, including custom curated sources. Organizations can access these records via an API to use within their existing VM workflows, or they can search and review CVE data within a UI.
Learn more: https://www.cisco.com.