Compare STIG Vulnerability Differences Quickly with OpenRMF Professional

Show differences in vulnerability status across all your similar checklists in your System ATO Package.

Quickly pick a System Package, Checklist Type, and Devices to find differences across your STIG Checklists

Finding Differences in Status and Severity Override

And you have to keep up with device patching, ACAS scanning and SCAP scanning to make sure they are secure as far as vulnerabilities go. And you have to keep up with the documentation, checklists, continuous monitoring, reporting, data calls, and status emails and briefings.

And all similar machines should have the same status of patching and vulnerabilities.

And somehow you have to do your job without getting burned out!

Tracking your SCAP scans, manual checklist settings, and checklist upgrades from DISA is very time consuming. And comparing them across all devices or even a subset of your devices/hosts/servers can be very manually intensive.

Even if you or someone on your team wrote a script to compare them, it is still a very manual process to get the latest SCAP scan, update the checklists, make sure they are the latest, track changes, and then see differences.

What we need here is a lot of automation to not only ingest the SCAP scans and create new checklists or update the current ones. We need to automate the change history for configuration management (the phrase no one wants to hear until you need it!).

And we need to automate finding differences and anomalies in a way to ask “Across all my Windows 2016 Domain Member servers, which ones have differences I need to investigate?” and get a quick answer we can use to take action.

Enter OpenRMF Professional v2.2!

Checklist Differences Report in OpenRMF

You can run Reports → Checklist Differences, pick the System Package you have access to, choose the type of Checklist, and then show all devices to choose which ones you want to compare. Click the Run Report button and see your differences (if any).

And then export to MS Excel if you need to so you can answer data calls, send out the information, and show your team what issues need to be worked quickly.

You also can run a separate report that is similar to the one above. How about we ask, “What is the status of this vulnerability item (i.e. V-220112) across all checklists in my System Package?”. OpenRMF Professional reports back all the devices and checklists that vulnerability is in across all the information related to that System Package and its latest status.

Combine this type of reporting with OpenRMF Professional’s tracking of patch vulnerabilities and open items, checklists, PPSM, software listing, hardware listing, POA&M data, historical tracking of patch score and STIG checklist score and other reports and you have a great system that can help you manage all this information in a much less stressful way.

This helps you in your Risk Management Framework processes. It helps you with Continuous Monitoring. It helps you toward achieving your IATO, ATO or updating your ATO status. And it gives you a single source-of-truth for this data that is tracked, audited, and reportable in a clean web-based interface. (And yes I am a little biased!)

Search for vulnerabilities across all STIG Checklists in your System Package quickly

OpenRMF Professional v2.2 (the software pitch)

Having a web-based central repository for all RMF data that has role-based security for each system, eases the RMF process using a single source of truth and eliminates errors, manually intensive individual tracking, and rework. It also provides leadership with direct insight into the status of all system security and risk information thus eliminating the mystery around implementing the RMF process.

Once an ATO is achieved, OpenRMF continues with continuous monitoring and tracking of POA&M items, overall risk of systems and applications, and tracking updated scans and checklists throughout the life of the system.

Check it out here. Ask for an evaluation copy to try it yourself!

CTO of Cingulara. Software Geek by trade. Father of three daughters. Husband. Lover of newer tech where it fits. Follow at https://www.cingulara.com/ @cingulara

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store