DEVOPSdigest

Vulcan Cyber announced Vulcan Remedy Cloud, a free service built on a large database of curated remedies for thousands of security vulnerabilities.

By sharing the Remedy Cloud library of fixes with the global vulnerability management community, Vulcan Cyber provides a powerful tool that streamlines the work of remediation by helping security and IT teams more effectively coordinate remediation campaigns.

"Vulnerability management should be a means to an end, but due to process breakdowns there's never an end -- just a growing backlog of vulnerabilities that require remediation," says Yaniv Bar-Dayan, Vulcan Cyber co-founder and CEO. "We've identified a critical breakdown in the process when security teams hand off vulnerability remediation tasks to IT operations teams. Vulcan Remedy Cloud streamlines this workflow by providing both teams with remediation playbooks. This one function is extraordinarily effective at creating cross-team alignment and cooperation. We're proud to offer Remedy Cloud as a free service to our community to help enterprise organizations get fix done."

Remedy Cloud is a standalone, free version of the Vulcan remediation intelligence capabilities already offered through the Vulcan remediation orchestration platform. This remediation intelligence is the missing link for any "found-to-fixed" remediation workflow. Vulcan remedies include the right patches, the best configuration scripts, and even workarounds and compensating controls to help security and IT operations teams quickly tackle the most difficult vulnerabilities. Vulcan remediation intelligence adds enterprise-scale remediation solutions designed to facilitate more collaborative and efficient remediation by integrating remedies with vulnerability scan, prioritization, patch and configuration management tools.

Security teams most often identify and prioritize vulnerabilities but the actual work of remediation is done by IT operations, DevOps, and site reliability engineering teams. Remedy Cloud helps these teams identify and align on the best remedies for the job, saving time and effort. This Vulcan Cyber freemium offering is part of a broader initiative to help vulnerability management programs become more effective at driving remediation outcomes. With Remedy Cloud, Vulcan Cyber opens a valuable resource to entire infosec and IT communities to promote a "get fix done" mindset.

Vulcan Cyber also announced Vulcan remediation analytics, which adds powerful business intelligence capabilities to its remediation orchestration platform.

New Vulcan remediation analytics dashboarding capabilities provide security and IT leaders with a clear and comprehensive view into the state of vulnerability remediation efforts across the organization. Featuring fully customizable dashboards, Vulcan now delivers real-time visibility into the effectiveness and outcomes of remediation campaigns.

Enterprise infosec leaders require insights garnered from hundreds of different tools and data sources to approximate business risks and determine appropriate action. This view is often incomplete due to siloed teams and tools. Vulcan collects relevant inputs from hundreds of data sources essential to vulnerability management and remediation programs. Rather than replace existing tools, the Vulcan platform integrates gathered intelligence and optimizes the tools' value to the enterprise.

Vulcan remediation analytics includes pre-built report templates for risk posture, compliance status and SLA attainment. As most enterprise infosec teams have unique requirements, these templates are just the start. Vulcan offers completely customizable reports and dashboards that provide insight into the status of any facet of remediation alerting CISOs, CIOs and business stakeholders to critical cyber security governance, risk and compliance issues.

With the release of both Remedy Cloud and the new remediation analytics and insights, Vulcan Cyber is helping to accelerate the industry's move from passive vulnerability management to active vulnerability remediation and automated cyber hygiene.