Introduction
2 min
the dashboard is a specialized interface designed to support the implementation of the national institute of standards and technology (nist) cybersecurity framework (csf) it focuses on the protect function, specifically addressing the configuration management (cm), technical drilldown for cm and maintenance (lifecycle) categories this dashboard enables the creation, monitoring and management of cybersecurity controls designed for these categories, providing end users with a clearer view of their organization’s security status by complying with nist csf standards, the dashboard enables organizations to regularly assess and enhance protective measures across their digital systems main capabilities capability description risk visibility provides insight into current cybersecurity risks affecting organizational assets, operations, and users, helping teams understand and prioritize potential threats vulnerability monitoring tracks vulnerability data across the environment, including active vulnerabilities, severity levels, and remediation status control effectiveness monitoring helps organizations evaluate whether security controls are operating as intended and supporting compliance objectives trend analysis displays historical trends and patterns, allowing users to monitor changes in vulnerability levels and security posture over time compliance support supports continuous monitoring activities that align with cybersecurity frameworks such as nist csf actionable insights highlights critical issues that may require immediate investigation or remediation, helping teams focus on the highest priority risks key widgets the dashboard includes widgets that help users evaluate risk and control performance from multiple perspectives risk assessment – evaluates cybersecurity risks and provides the foundation for ongoing control monitoring and management average vulnerabilities per scan – shows the average number of vulnerabilities detected during security scans oldest unremediated critical vulnerability – highlights critical vulnerabilities that have remained unresolved for the longest period active vulnerabilities by severity – displays unresolved vulnerabilities grouped by severity level vulnerability discovery over time – tracks vulnerability findings across scans to help identify trends and changes in risk levels recent scans and kev detection – summarizes the most recent scan activity and identified known exploited vulnerabilities (kevs) scan coverage adherence – measures whether assets are being scanned according to defined schedules and policies accessing the dashboard from the main menu , go to services → kyndryl services → → control overview