The Whole of Government Vulnerability scanning service uses the Rapid 7 Insight Platform and Splunk Dashboard to collect, analyse and visualise data streams of cyber security vulnerabilities within an organisation’s internal or external facing ICT systems and technology infrastructures. The dashboard allows large data streams to be transformed into useful information which can be used to inform internal engagement and decision-making to achieve powerful business and operational outcomes.
This scanning service enables our agencies to obtain targeted intelligence to guide activities such as installation of patches to correct security and functionality problems in software and firmware.
The Vulnerability Scanning Service includes two key components and an optional application scanning service.
Vulnerability Scanning
The InsightVM Security Console is an on-premises vulnerability scanner and management system which allows you to identify risk in your environment, organise your devices, and prioritise remediation.
This service uses the Rapid 7 Insight Platform and Splunk Dashboard to collect, analyse and visualise data streams of cyber security vulnerabilities present within an organisation’s IT systems and technology infrastructures. The dashboard enables large data streams to be transformed into useful information which can be used to inform internal engagement and decision-making.
Vulnerability Health Check
This is a consultation service provided by RioT Solutions which takes place annually and is included as part of the WoG Vulnerability scanning service offering. Based on an agency's core business functions and priorities, the Vulnerability Health Check service analyses historical vulnerability data collected in the Splunk Dashboard and iteratively fine-tunes vulnerability scanning parameters in order to improve an organisations cyber threat mitigation initiative. A Vulnerability Health Check Report is provided to the agency as part of this consultation.
See our Vulnerability Health check PowerPoint presentation for an overview of this service. Agencies that use the Vulnerability scanning service for more than 12 months are encouraged to book a Health Check.
Application vulnerability scanning service (optional add-on)
Agencies can choose to purchase licenses to access the Application vulnerability scanning service console as an optional service.