High-level overview of configurable widgets in RiskSense.
Some widgets have a configuration menu. This menu allows you to modify the widget and save those changes without editing the dashboard. You can also change the name of a configurable widget. You may want to add the same widget with different configurations to a single dashboard.
To access the configuration settings, click the options menu in the upper right. You will see this menu if you can edit the dashboard. If you share the dashboard, the widget configuration menu also becomes visible to Managers.
Note that configurable widgets behave differently depending on whether you are editing the dashboard:
- If you are editing a dashboard, you must save the entire dashboard to update the widget. Some widgets also provide access to primary settings while displaying data. For example, the widget shown above has the controls Asset Type and Priority. You can use the controls to configure the widget without going through the widget configuration menu.
- If you are viewing the dashboard, you must save new settings through the widget configuration menu.
Widgets Configurable by Asset Type
Several widgets can display either host or application findings. These widgets also support other types of configurations.
Open Findings by Priority
This widget shows the number of open findings classified as Critical, High, Medium, Low, or Info. You can view a distribution of open host or application findings by either Vulnerability Risk Rating (VRR) or Severity. A finding’s VRR or Severity score determines its priority: Critical (9.0 -10.0), High (7.0-8.99), Medium (4.0-6.99), Low (0.1 - 3.99), and Info (0.0).
Recent Findings by Status
The data available in this widget depends on three settings:
- Open or Closed: “Open” shows open findings distributed by date of discovery. “Closed” shows closed findings distributed by time since resolution. In either mode, the chart shows the count of weaponized findings in each age range and a breakdown of findings by priority.
- Host or App: Choose “Host” to see host findings or “App” to see application findings.
- VRR or Severity: This setting determines whether a finding’s VRR or Severity score determines its classification as Critical, High, Medium, Low, or Info.
Findings by Priority
This table shows a distribution of findings based on remediation status and weaponization (presence of threats). Additionally, the table also shows a more granular breakdown of findings according to the risk that each presents to the organization. Either a finding’s VRR or Severity determines its classification as Critical, High, Medium, Low, or Info. This widget has two settings: Asset Type, which determines whether the widget shows host or application findings, and Priority, which determines whether the widget uses VRR Group or Severity Group filters.
Open Findings over Time
This widget allows you to explore how the distribution of open findings and open weaponized findings changes over time. For each time range, the widget shows open and open weaponized Critical, High, Medium, and Low findings. VRR determines the numerical ranges for Critical, High, Medium, and Low.
By default, the widget shows the count of open host findings over the past 12 months. You can change the Timeline setting to see the open finding count over the past 12 days, the past 12 weeks, or the past 12 months. The other setting, Asset Type, lets you switch between host findings and application findings.
This widget only supports Network and Group filters.