1. RiskSense Knowledge Base
  2. Getting Started
  3. Vulnerability Risk Rating & RiskSense Security Score

RS³ v2 Platform Changes: Overview

High-level overview of the platform changes occurring with the RiskSense Security Score (RS³) version 2 update.

For a high-level overview of the RiskSense Security Score (RS³) version 2 update, see the RS³ v2: Overview article. This article discusses the upcoming platform changes occurring with the upcoming RS³ v2 update.

Expectations

Your organization may notice some of the following under this enhanced scoring methodology:

  • Findings associated to trending vulnerabilities will be prioritized higher.

  • Assets with large concentrations of findings may decrease in RS³.

  • Assets with no critical findings may increase in RS³.

  • Group RS³ values will be influenced by the business criticality of member assets.

  • Remediation of priority findings will have a stronger impact on RS³.

  • Application RS³ scores will impact group and organizational scores.

  • Dashboards will be updated to reflect the enhanced Vulnerability Risk Rating (VRR) and RS³ system.

  • In many cases, RS³ values will change at the asset, group, and organizational levels. Most of the large changes in scores can be attributed to one of the following:

    • Enhanced aggregation method of finding VRRs at the asset level (Critical >> Low)

    • New weighted average of asset scores

    • Application RS³ scoring

  • As a reminder, fixing a single critical finding may not move the needle much, but closing a large number of critical findings or reducing the greatest VRR among them will make a substantial difference in RS³.

  • Additionally, Higher-criticality assets will make a bigger contribution to group and organizational scores when findings on those assets are closed.

Host Findings Page Updates

The left-hand color bar on Host Finding rows now correspond to VRR rather than Severity.

RS3 Platform Changes - Host Findings - VRR Color Bar

A new Network column is now available in the Host Findings list view.

RS3 Platform Changes - Network Column on Host Findings Page

Host Findings Page Columns

Default Columns

  • VRR

  • Status

  • Title

  • Asset Criticality

  • IP Address

  • Host Name

  • Port

  • Manual Finding Report Count

  • Last Found On

Additional Columns

  • Due Date

  • Threat Count

  • Finding Footprint

  • Severity

  • CVSS 3.0

  • CVSS 2.0

  • Scanner Reported Severity

  • Scanner Name

  • Scanner Plugin Status

  • Test Status

  • Assignments

  • Groups

  • Network

  • Discovered On

  • Resolved On

  • Tags

  • Asset Tags

  • Tickets

  • Notes

Hosts Page Updates

Counts of open findings by VRR are now available as columns in the Hosts list view.

RS3 Platform Changes - Open Findings by VRR on Hosts Page - ALT

The Finding Count Distribution in the Host Detail pane now displays the distribution by VRR rather than Severity.

RS3 Platform Changes - Findings Count in Host Detail Pane by VRR

The host’s RS³ is now displayed prominently at the top of the Detail pane.

RS3 Platform Changes - RS3 in Host Detail Pane

New VRR-related filter categories, such as Count of Findings by VRR Category, are available in the Hosts view.

RS3 Platform Changes - VRR Filters on Hosts Page

Hosts Page Columns

Default Columns

  • RS³

  • Asset Criticality

  • IP Address

  • Host Name

  • Total

  • Last Found On

Additional Columns

  • Operating System

  • Network

  • Groups

  • VRR Critical

  • VRR High

  • VRR Medium

  • VRR Low

  • VRR Info

  • Critical

  • High

  • Medium

  • Low

  • Info

  • Open CVE Count

  • Open Threat Count

  • Open Ransomware Count

  • Open RCE/PE CVE Count

  • Discovered On

  • Tags

  • Notes

Application Findings Page Updates

Application Finding VRR has been added to the Application Findings page as a default column, with a corresponding color bar.

RS3 Platform Changes - Application Findings - VRR Color Bar

The Vulnerability Risk Rating and VRR Group filter categories have been added to the Application Findings list view.

RS3 Platform Changes - VRR Group Filter on Application Findings Page

A new Asset Criticality column has been added to the Application Findings list view as a default column.

RS3 Platform Changes - Asset Criticality Column on Application Findings Page

Application Findings Page Columns

Default Columns

  • VRR

  • Status

  • Title

  • Asset Criticality

  • Location

  • Application Name

  • Manual Finding Report Count

  • Last Found On

Additional Columns

  • Severity

  • Due Date

  • Threat Count

  • Finding Footprint

  • CVSS 3.0

  • CVSS 2.0

  • Scanner Name

  • Assignments

  • Finding Type

  • Network

  • Groups

  • Address

  • Discovered On

  • Resolved On

  • Tags

  • Asset Tags

  • Tickets

  • Notes

  • Module Name

  • Compiler

  • OS

  • Architecture

  • Source Origin

  • Visibility

  • Remediation Effort

  • Exploit Level

  • CIA Impact

  • PCI Related

  • Line

  • Scope

  • Function Prototype

  • Function Relative Location

  • Scanner Version

Applications Page Updates

Application RS³ has been added as a default column in the Applications page, with a corresponding color bar. A new Asset Criticality column has also been added as a default column in the Applications list view.

RS3 Platform Changes - Application RS3 and Asset Criticality

An updated UI window for modifying an application’s criticality has been added in the More menu.

RS3 Platform Changes - Update Asset Criticality

An updated UI window for changing an application’s access type has been added in the More menu.

RS3 Platform Changes - Change Applications Access Type

Counts of open findings by VRR are now available as columns in the Applications list view.

RS3 Platform Changes - Open Findings by VRR Counts on Applications page

The Finding Count Distribution in the Application Detail pane now displays the distribution by VRR rather than Severity.

RS3 Platform Changes - Findings Count in the Application Detail Pane

The Application RS³ is now displayed prominently at the top of the Detail pane.

New count of findings by VRR filter categories are available in the Applications page.

RS3 Platform Changes - VRR Filters on Applications Page

Applications Page Columns

Default Columns

  • RS³

  • Asset Criticality

  • Address

  • Name

  • Total

  • Last Found On

Additional Columns

  • Network

  • Groups

  • Locations

  • VRR Critical

  • VRR High

  • VRR Medium

  • VRR Low

  • VRR Info

  • Critical

  • High

  • Medium

  • Low

  • Info

  • Discovered On

  • Tags

  • Notes

Groups Page Updates

Finding Counts by VRR for Host Findings (HF) and Application Findings (AF) have been added as columns to the Groups page.

RS3 Platform Changes - Groups Page Host Finding Counts

RS3 Platform Changes - Groups Page Application Finding Counts

Finding Count Distributions in the Groups Detail pane are now shown by VRR rather than Severity.

RS3 Platform Changes - Groups Page Findings Count in Detail Pane

Groups Page Columns

Default Columns

  • RS³

  • Name

  • Hosts

  • HF Total

  • Apps

  • AF Total

  • Fixes

  • Users

Additional Columns

  • Assets

  • VRR HF Critical

  • VRR HF High

  • VRR HF Medium

  • VRR HF Low

  • VRR HF Info

  • HF Critical

  • HF High

  • HF Medium

  • HF Low

  • HF Info

  • VRR AF Critical

  • VRR AF High

  • VRR AF Medium

  • VRR AF Low

  • VRR AF Info

  • AF Critical

  • AF High

  • AF Medium

  • AF Low

  • AF Info

  • Assessments

  • Data Refresh

Executive Dashboard Updates

The RS³ Timeline chart now shows historical counts of findings by CHMLI rather than threat counts. Application data is included in the chart, at the RS³ and finding count levels. A vertical line denotes the date on which the updated RS³ v2 algorithm went into effect.

RS3 Platform Changes - Executive Dashboard RS3 Timeline

The RS³ infographic was updated and will appear on first login following launch.

RS3 Platform Changes - RS3 Platform Methodology

The Overall RS³ dial now shows an average of both host and application scores.

RS3 Platform Changes - Overall RiskSense Security Score Tile

Miscellaneous Platform Updates

List Views

All new columns in the list views are sortable and include corresponding filters in the filter pane. These columns are disabled by default.

Reporting

Reports have been updated to include limited application information. Most instances of Overall RS³ include only host averages and are labeled as such. Future updates to reporting will bring more enhancements related to application data.

A Note on Trending Vulnerabilities

According to research, the majority of findings associated with a Trending Vulnerability (within the last 30 days) already receive a critical VRR. Scores may potentially be impacted by this. Trending data, similar to threat data in general, changes with time. A vulnerability currently trending may not be so in the future. Therefore, changes to VRR can occur over time; this is normal and to be expected.