Remediate Risk Across Cloud and On-Prem Environments
Remediation Hub offers a list of prioritized updates called solutions that are focused on reducing vulnerability risk. This list makes the Remediation Hub the first place you should check to drive risk reduction across your hybrid environments.
Access Remediation Hub
Remediation Hub is accessible from the Command Platform. To view the Remediation Hub, you must have the following permissions:
| Solution | Required Permission |
|---|---|
| Command Platform | Administrator (Shared) |
| InsightVM | Global Administrator |
| InsightCloudSec | Domain Admin, Domain Viewer, or Organization Admin |
Vulnerabilities data requires InsightVM and InsightCloudSec
Vulnerability data originates from InsightVM and InsightCloudSec. For setup instructions, visit the InsightVM Quick Start Guide and the InsightCloudSec Cloud Vulnerability Management home page.
Understand Remediation Hub
Remediation Hub contains three main sections:
- Emergent Threats (if available)
- Key Metrics
- Solutions
Emergent threats
Rapid7’s security research team actively monitors and researches emergent threats. Emergent Threat Response delivers fast expert analysis and first-rate security content for the highest priority security threats to help you understand your exposures and act quickly to protect your assets from exploitation. When there is an active emergent threat, Remediation Hub notifies users with a callout banner at the top of the page that Rapid7 teams are responding. This callout initially provides a link to a blog post that is constantly being updated. As more becomes known about the vulnerability and content is created in various Rapid7 solutions, the Remediation Hub shows customers the CVE numbers and the impact on assets across their environment. Emergent threats are shown for 14 days. If there is no current emergent threat, the banner will not be displayed.
Key metrics
The following key metrics are displayed at the top of the Remediation Hub:
| Metric | Description |
|---|---|
| Total Risk | Normalized, aggregate score (from 0 to 1000) representing the risk of all vulnerabilities and assets across your cloud and on-prem environments. |
| Vulnerabilities Remediated | The percentage of vulnerabilities that will be remediated when implementing the top 25 solutions. |
| Assets Update | The number of assets that will be updated if the top 25 solutions are implemented. |
Solutions
All risks are paired with a solution (also known as a remediation). Solutions are sorted by highest risk score reduction by default. Each solution in the table includes the following:
- Type (on-prem or cloud)
- A short description of the solution
- The amount that the risk score is reduced by implementing the provided solution
- For more information on how risk is calculated, visit How is Risk Calculated?
- The number of assets, images, CVEs, and findings that are associated with the risk
You can apply filters to reduce the scope of solutions and assets returned from the Remediation Hub. Click Export to the top 25 solutions in the current view.
Click a solution from the table to open a panel containing details on the total number of impacted assets and vulnerabilities as well as a description of the solution. Depending on the type of asset, available details may differ but can include:
- Asset Name
- Resource ID and type
- Physical site
- Cloud account
- Owner
- Vulnerability proof
- Vulnerability name, severity, and risk
Asset count calculation
The count of assets affected by a given solution may vary between Remediation Hub, InsightCloudsec, and InsightVM because it takes time to sync the data for Remediation Hub.