2
Streamlining Vulnerability Remediation Workflow INTEGRATION BENEFITS • Streamlined IT workflow by utilizing the native ticketing solution leveraged by the IT operations team • Automatic ticket generation within Jira after a Nexpose scan is completed • Flexible ticket creation that can be customized to open tickets by a specific severity threshold, sites, or asset groups • Easy to configure and deploy Solution Overview Being proactive about security means more than simply conducting frequent security assessments of your enterprise assets. The key to securing your organization is applying the proper remediation steps in order to mitigate the risk of vulnerabilities. One of the challenges facing many organizations is incorporating the remediation lifecycle into their in-house ticketing solution already in place. Integrating Rapid7 Nexpose with Atlassian JIRA, solves this problem by automatically creating tasks when new vulnerabilities are discovered and gives the operations manager the ability to assign the tickets to the correct remediation teams. With remediation tasks in JIRA, the organization now has the ability to report on which tickets have been successfully closed and compare them on the subsequent scans to see if they have been truly remediated. How it Works A Nexpose scan is conducted to assess the risk posture of the systems within an organization. The vulnerability data is then processed for each host. Next, at a periodic interval, the JIRA connector is run to query Nexpose for the latest vulnerabilities and create the remediation tickets. A JIRA Administrator can then assign the tickets to the proper teams for remediation. | Rapid7.com Integration Brief Atlassian Jira and Rapid7 Nexpose®

Atlassian Jira and Rapid7 Nexpose® · About Atlassian Atlassian unlocks the potential in every team. Our products help teams collaborate, build software and serve their customers

Embed Size (px)

Citation preview

Streamlining Vulnerability Remediation Workflow

INTEGRATION BENEFITS

• Streamlined IT workflow by utilizing the native ticketing solution leveraged by the IT operations team

• Automatic ticket generation within Jira after a Nexpose scan is completed

• Flexible ticket creation that can be customized to open tickets by a specific severity threshold, sites, or asset groups

• Easy to configure and deploy

Solution OverviewBeing proactive about security means more than simply conducting frequent security assessments of your enterprise assets. The key to securing your organization is applying the proper remediation steps in order to mitigate the risk of vulnerabilities. One of the challenges facing many organizations is incorporating the remediation lifecycle into their in-house ticketing solution already in place. Integrating Rapid7 Nexpose with Atlassian JIRA, solves this problem by automatically creating tasks when new vulnerabilities are discovered and gives the operations manager the ability to assign the tickets to the correct remediation teams. With remediation tasks in JIRA, the organization now has the ability to report on which tickets have been successfully closed and compare them on the subsequent scans to see if they have been truly remediated.

How it Works

A Nexpose scan is conducted to assess the risk posture of the systems within an organization. The vulnerability data is then processed for each host. Next, at a periodic interval, the JIRA connector is run to query Nexpose for the latest vulnerabilities and create the remediation tickets. A JIRA Administrator can then assign the tickets to the proper teams for remediation.

| Rapid7.com

Integration Brief

Atlassian Jira and Rapid7 Nexpose®

About Atlassian

Atlassian unlocks the potential in every team. Our products help teams collaborate, build software and serve their customers better. Nearly 40,000 large and small organizations – including Citigroup, eBay, Coca-Cola, Netflix and NASA – use Atlassian’s tracking, collaboration, communication, service management and development products to work smarter and deliver quality results on time. Learn about products including JIRA, Confluence, HipChat, Bitbucket and Stash at http://atlassian.com.

About Rapid7

Rapid7’s IT security data and analytics software and services help organizations reduce the risk of a breach, detect and respond to attacks, and build effective IT security programs. With comprehensive real-time data collection, advanced correlation, and unique insight into attacker techniques, Rapid7 strengthens an enterprise’s ability to defend against everything from opportunistic drive-by attacks to advanced threats. Unlike traditional vulnerability management and incident detection technologies, Rapid7 provides visibility, monitoring, and insight across assets and users from the endpoint to the cloud. Dedicated to solving the toughest security challenges, we offer unmatched capabilities to spot intruders leveraging today’s #1 attack vector: compromised credentials. Rapid7 is trusted by more than 3,500 organizations across 78 countries, including 30% of the Fortune 1000. To learn more about Rapid7, visit www.rapid7.com.

| Rapid7.com

Streamlining vulnerability remediation workflow with Nexpose and JIRA

Figure 1

Overview of Integration Process

STEP 1: Nexpose performs security assessment.

STEP 2: Nexpose processes vulnerabilities per host.

STEP 3: Connector runs to query Nexpose for vulnerability data and creates tasks in JIRA via the API.

STEP 4: A JIRA administrator reviews the tickets created and assigns them to their respective remediation teams.

HOW IT WORKS

Create remediation tickets using Nexpose vulnerability data to allow your teams to effectively prioritize remediation efforts to reduce risk in your environment.

WHAT YOU NEED:• Rapid7 Nexpose 5.x

• JIRA 6.x with valid access privileges