on 2019-02-1107:45 PM - edited on 2023-07-2802:52 PM by ChristineTran
Risk Based Security (RBS) provides detailed information and analysis on Vulnerability Intelligence, Data Breaches, and Vendor Risk Ratings. Our products, VulnDB and Cyber Risk Analytics (CRA), provide organizations access to the most comprehensive vulnerability and vendor risk knowledge bases available, including advanced search capabilities, access to raw data via RESTful API, and email alerting to assist organizations in taking the right actions in a timely manner. In addition, RBS’ YourCISO offering provides organizations with on-demand access to high quality information security and risk management resources in one, easy to use web portal.
VulnDB is the most comprehensive and timely vulnerability intelligence available and provides actionable information about the latest in security vulnerabilities. VulnDB allows organizations to search on and be alerted to the latest vulnerabilities, both in end-user software and the third-party libraries or dependencies that developers use to build applications. A subscription to VulnDB provides organizations with simple to understand ratings and metrics on both vendors and products, and how each contributes to the organization’s risk-profile and cost of ownership.
When a new vulnerability is disclosed, organizations need to know if and where they are impacted without having to do a vulnerability scan of their environment. VulnDB contains over 65,000 additional vulnerabilities not found in the frequently relied-upon Common Vulnerabilities and Exposures (CVE) database and a much higher degree of information for each vulnerability, providing the richest, most complete vulnerability intelligence available. VulnDB helps customers better address points of risk across their organization – from application development and IT infrastructure management to security operations, vendor risk management, and procurement.
Instead of relying on legacy vulnerability scanning, the VulnDB integration with RSA Archer allows organizations to easily map vulnerability data to the assets and vendors in their environment and quickly identify if a newly disclosed vulnerability will impact them. Armed with this insight, organizations can efficiently prioritize and plan remediation activities, and also quickly identify relevant vulnerability data during security incident response activities.
Risk Based Security VulnDB Integration enables organizations:
Access to a richer and more timely pool of vulnerability intelligence than is available from CVE/NVD and other sources.
Insight into vulnerabilities that could pose risk to an organization without the need for an additional vulnerability scan.
Ability to more effectively and efficiently prioritize vulnerabilities to be remediated.
Solution and Platform Information
Solution Area: IT & Security Risk Management
Prerequisite Use Cases: Archer IT Security Vulnerabilities Program
Supported Platform Version: Archer Platform Release 6.4 SP1 and later
Supported Archer Environments:
Archer On-Demand Application (ODA) Licenses
This offering does NOT require any Archer On-Demand Application (ODA) licenses.
A subscription to VulnDB with the API access feature is required to use the VulnDB Data Feed for Archer ITSVP.
For More Information
To learn more about the Risk Based Security VulnDB Integration:
The Risk Based Security VulnDB Integration is an offering provided through the Archer Exchange to enhance your existing Archer implementation. To learn more about the Archer Exchange, please visit the Archer Exchange on the Archer Community.