The dashboard contains a summary section, a few summary graphics and a filter section as shown in Figure 1.
Figure 1 - NormShield dashboard
Upper management is always keen on seeing colorful graphs and has a particular tendency towards Service Level Agreements and Key Performance Indicators. This is not out of nothing, obviously. Managers need SLA and KPI data in order to make smart decisions about future investments, planning and such.
There are many challenges in setting up a sound information security program. Funding is one of them, rightly. But one another of these challenges is measuring the results and proving the program is successful.
NormShield provides easy-to-consume magic numbers for proofs your program needs. One of the KPI graphs is shown in Figure 2. It shows a risk trend for new, cascading and fixed vulnerabilities, in other words, weighted vulnerability trend. You can easily find out the number of vulnerabilities newly found, carried forward and fixed in a specific month.
Figure 2 - Dashboard vulnerability trend graphics for the last six months
Another keen graph NormShield provides is the SLA of vulnerabilities shown in Figure 3. Here every single closed vulnerability is shown against the number of days they stayed opened. Moreover, average number days vulnerabilities stay open is also shown each separated for a single severity level.
Figure 3 - Dashboard SLA of closed vulnerabilities graph
These clickable graphs also allow drill further down to the vulnerability detail level. There are also pie charts showing the severity distribution of vulnerabilities for closed and open status.
Figure 4 shows the summary section in which various dynamic properties of NormShield is being shown for the root user, such as the current defined users, number of group companies, the number of IP and URL assets, the number of vulnerabilities that should be rechecked.
Figure 4 - Dashboard summary information