Monitoring vulnerabilities

As an operator or site reliability engineer (SRE), you can monitor vulnerabilities to:

  • Assess and prioritize the risks associated with the security vulnerabilities affecting a service.
  • Derive actionable insights by viewing all services, vulnerabilities, and remediation owners.

To learn more about risks in BMC Helix AIOps, see Risks-overview.

Related topics

Roles-and-permissions

Managing-risksWorking with risks

Before you begin

To monitor all services

  1. On the BMC Helix AIOps console, click Risks and then click Vulnerabilities to view the Top Impacted Services table.
    The services affected by vulnerabilities are filtered and displayed according to their Risk score. By default, only the top five services are displayed in the Top Impacted Services table.
  2. Click View all to expand the list of services.
    All Impacted Services_251.png
  3. The following information is displayed:
    • Service name
    • Risk Score: The risk score is based on the CVSS score imported from BMC Helix Automation Console.
    • Critical Vulnerabilities: The number of vulnerabilities in the critical state that are affecting the service.
    • Impacted Assets: The number of assets related to the services that are impacted by critical vulnerabilities.
  4. To investigate a service, click a service name. 
    The service details page is displayed, which helps you investigate a service. For more information, see To investigate vulnerabilities for an impacted service.

Important

In version 25.1, BMC Helix AIOps only displays child services associated with a host name that are affected by vulnerabilities.

To monitor the workload of remediation owners

  1. On the BMC Helix AIOps console, click Risks and then click Vulnerabilities to view the Top Remediation Owners table.
    The remediation owners are filtered and displayed according to the number of open vulnerabilities assigned to them. By default, only the top five remediation owners are displayed in the Top Remediation Owners table.
  2. Click View all to expand the list of services.All Remediation Owners_251.png
  3. The following information is displayed:
    • Remediation owner name: The user or user group that owns the vulnerability.
    • Assigned vulnerabilities: The number of vulnerabilities assigned to the remediation owner.
    • Impacted assets


To monitor all vulnerabilities

  1. On the BMC Helix AIOps console, click Risks and then click Vulnerabilities to view the Top Vulnerabilities table.
    The vulnerabilities are filtered and displayed according to their Risk score. By default, only the top five vulnerabilities are displayed in the Top Vulnerabilities table.
  2. Click View all to expand the list of vulnerabilities.
    All Open Vulnerabilities_251.png
  3. The following information is displayed:
    • Vulnerability name
    • CVE-ID
    • Severity: Severity level assigned by the scanner connector.
    • CVSS Score: The CVSS V3 score is assigned by the NIST NVD.
    • Impacted Assets: The number of assets impacted by the vulnerability.
  4. To investigate a vulnerability, click its name.
    The vulnerability details page is displayed.


Where to go from here

Click a service or vulnerability name to investigate it further:

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*