Cisofy Summary

The integration of Cisofy security solutions with the Centraleyezer Vulnerability Management platform enhances the import and management of security findings. This collaboration enables organizations to efficiently identify, prioritize, track, and remediate vulnerabilities, improving their overall security posture and risk management.

Cisofy Key Features

  • Data Import:

    • Import assets, scan summaries, and vulnerabilities from Cisofy security tools into Centraleyezer, either on-demand or via automated schedules.

    • Supported formats: Lns.

  • Detailed Findings:

    • Centraleyezer provides comprehensive vulnerability details based on Cisofy security assessments.

  • Risk Scoring:

    • Configurable severity values for Cisofy findings, aligned with organizational risk policies.

  • Selective Data Import:

    • Supports filtering based on status, scan type, and severity for more precise data imports.

Considerations

  • The integration supports mapping one Cisofy instance with one Centraleyezer instance.

  • Configuring a different Cisofy instance in the plugin will overwrite previously imported data.

Requirements

  • System Requirements:

    • Centraleyezer Prerequisites: Latest version of the Centraleyezer Vulnerability Management Platform is recommended.

  • Permissions and Roles:

    • Centraleyezer: Requires System Admin or Application Security Manager permissions.

    • Cisofy: User access for vulnerability scan results.

    • Import mappings require admin-level permissions.

Release Notes

Version 1.0.0:

  • Mapped vulnerabilities from Cisofy security scans, including:

    • Finding Target

    • Asset Target

    • Asset

    • Name

    • Description

    • Recommendation

    • Criticality

    • Port

    • Protocol

    • Reply