CyberCNS Notification Rules for Remediation

Notification Rules

CyberCNS has an ability to set up notification rules for remediations at Company View and Global View levels.

On the Company View Or Global View menu, Navigate to Notification Rules and click on (+Add) to add a New Rule.

Notification Rules pertaining to Remediation

  • Notification Rules contain a list of conditions that can be set. Here only remediation notification rules are covered.

Please make sure to select only one from Remediation notification rules from Remediation By Company OR Remediation by Asset OR Remediation by Product.

There are 3 types of notification rules that could be specifically set for remediation.

  • Remediation by Company

  • Remediation by Asset

  • Remediation by Product

  • Remediation By Asset And Product

  • Enable Remediations for Critical and High severity

Here the ticket is automatically raised in case a PSA (e.g ConnectWise, AutoTask, HaloPSA, etc.) integration is already set and is chosen for notification rules. Tickets will have information based on the latest successful vulnerability scan and Ticketing Rules set.

  • If set at the Company level menu, it will be applied to the specific company under which it is set.

  • If applied at Global Level Menu, it will be applied to all the companies under the portal.

Remediation by Company

This Notification Rule helps create a ticket for remediations listed by CyberCNS under the Remediation Plan section. 

Here all the Application & OS Vulnerabilities which are listed under Remediation Plan will be added to a single ticket and their remediation status updates can be tracked on the same ticket.

This rule is useful to set if the interest is in tracking vulnerability changes at a company level.

Remediation by Product

This Notification Rule helps create a ticket for remediations per product ( application or OS) listed by CyberCNS under the remediation plan section. 

Here each product (Application & OS) listed under the remediation plan will have a different ticket. This ticket will include information like product name, fix version, affected assets & count of vulnerabilities with categorizations like Critical, High, Medium, and Low.

e.g Putty as a product (application)  will create a ticket into PSA for recommended remediations.

Updates on the status of the vulnerabilities fixed or increased can be tracked on the ticket.

This rule is useful if the interest is in tracking vulnerability changes at the product (application/OS)  level.

 

Remediation by Asset

This Notification Rule helps create a ticket for remediations per asset as listed by CyberCNS under the remediation plan. 

Every affected asset which is detected with vulnerabilities and listed under the remediation plan will have a separate ticket. These tickets will hold information like Asset name, Type of Vulnerability, and Count of Vulnerability. 

This rule is useful if the interest is in tracking vulnerability changes at the asset level.

 

Remediation based on severity

Once either of the above three options are selected, you can select Remediation based on severity if you would like only Critical or High severity remediations to be created as tickets.