- Knowledge Base
- Reports
- General
-
Security Announcements
-
Product News
-
Next-Gen Vulnerability Management
-
Getting Started
-
General
-
Operating Status
-
System & Network Scanning
-
Web Application Scanning
-
Cloud Scanning (CSPM)
-
API Scanning
-
Phishing & Awareness Training
-
Scanner Appliance
-
Device Agent
-
On-premise platform deployment
-
Asset Management
-
Vulnerability Manager
-
Reports
-
Digest Reports
-
Organizer
-
Continuous Monitoring
-
Integrations
-
Platform API
-
Remediation
-
Users
-
PCI DSS
-
Terms & Conditions
-
Dashboard
How is the overall business risk calculated?
Business risk is calculated based on the severity of the vulnerability in relation to the business impact set on the asset or a related tag.
Business impact levels
- High
- Medium
- Neutral
- Low
This value is set on the host under Asset Manager in the main menu. Click edit on the asset and change the Business impact under the General Information tab.
Vulnerability severity levels
- Critical
- High
- Medium
- Low
Using these values in a fixed chart going from low to critical depending on the combined levels, as shown below:
Hierarchy for business impact
Hierarchy for business impact in relation to assets and tags.
- Business impact set on the asset have the highest priority.
- If no business impact is set on the asset, the highest business impact set on related tags is used.