View analytics for the portfolio level only | Fluid Attacks Help

View analytics for the portfolio level only

Info on required roleRole required: User, Vulnerability Manager or User Manager
Portfolios are sets of groups that you create on the Fluid Attacks platform to compare analytics between the selected groups. To access one, click on its name in your organization's Portfolios section. Within a portfolio, you can see graphs and figures on the status of vulnerabilities and your remediation practices. Those presented below are the ones that you only find in the Analytics section at the portfolio level.
Advice on creating portfolios and using options
Advice:
  1. Read Sort groups into portfolios to learn to create these sets.
  2. Hover over charts to see available options.

Remediation rate benchmark

See portfolio remediation rate benchmark on the Fluid Attacks platform

This chart offers an overview of your risk exposure management at the portfolio level. This is shown through its correspondence with closed (remediated), accepted, and open (not remediated, not accepted) vulnerabilities and their distribution relative to the total detected amount. Further, you can compare your remediation rate to the best-performing and worst-performing portfolios across all organizations, as well as against the average performance of portfolios. This benchmarking helps you define remediation rate goals.

You can interact with the chart as follows:
  1. Hover over a bar to see all the complete percentages information
  2. Hover over a chart legend to highlight the corresponding portion in the chart
  3. Click on a chart legend to hide the corresponding information from the visual comparison

Distribution of vulnerabilities by group

See portfolio distribution of vulnerabilities by group on the Fluid Attacks platform

This visualization breaks down the distribution of vulnerabilities by how they have been managed so far (closed, open, temporarily accepted, and permanently accepted) in the different groups within your portfolio. This allows you to identify which groups may require additional attention or resources to improve their vulnerability management.

You can interact with the chart as follows:
  1. Hover over a bar to see the complete percentages information
  2. Hover over a chart legend to highlight the corresponding portion in the chart
  3. Click on a chart legend to hide the corresponding information from the visual comparison

Open vulnerabilities by group

See portfolio open vulnerabilities by group on the Fluid Attacks platform

This chart displays the percentage of open vulnerabilities (i.e., those that are present and unaccepted) within each group relative to the total number of open vulnerabilities in your entire portfolio. This helps you pinpoint groups with a higher concentration of unresolved cybersecurity issues.

You can interact as follows with the chart:
  1. Hover over a slice to see it highlighted along with the name of the group and corresponding percentage
  2. Hover over a chart legend to highlight the corresponding slice
  3. Click on a chart legend to exclude the corresponding group from the percentage calculation

Undefined treatment by group

See portfolio undefined treatment by group on the Fluid Attacks platform

This chart shows the percentage of vulnerabilities within each group that have not yet been assigned a treatment plan (e.g., In progress, Temporarily accepted) relative to the total number of untreated vulnerabilities in your entire portfolio. This allows you to identify groups where assigning treatments to vulnerabilities is urgently needed.

You can interact with the chart as follows:
  1. Hover over a slice to see it highlighted along with the name of the group and corresponding percentage
  2. Hover over a chart legend to highlight the corresponding slice
  3. Click on a chart legend to exclude the corresponding group from the percentage calculation

Exposure by group

See portfolio exposure by group on the Fluid Attacks platform

This chart provides the risk exposure (measured in CVSSF units) that unmanaged, unaccepted vulnerabilities represent in each group of the portfolio. This way, you can decide in which group to prioritize risk exposure reduction.

Hover over a bar to see the precise CVSSF value.

Open vulnerability types by group

See portfolio open vulnerability types on the Fluid Attacks platform

This chart informs of the types of vulnerabilities still present and unaccepted within each group. This information helps you prioritize remediation efforts accordingly.

Hover over a bar to see the precise amount of types.
Note on definition of type of vulnerability
Note: A type of vulnerability refers to the category into which a detected security issue most likely falls.

Vulnerabilities by group

See portfolio vulnerabilities by group on the Fluid Attacks platform

This chart presents the share of reported vulnerabilities of each group relative to the total amount within the portfolio. This allows you to compare projects on the amount of security issues found.

You can interact with the chart as follows:
  1. Hover over a slice to see it highlighted along with the name of the group and corresponding percentage
  2. Hover over a chart legend to highlight the corresponding slice
  3. Click on a chart legend to exclude the corresponding group from the percentage calculation

Unsolved events by group

See portfolio unsolved events on the Fluid Attacks platform

This chart offers the number of unsolved events affecting each group. Events are situations that hinder Fluid Attacks' tools or security analysts from conducting security testing on part or all of a group's scope. Addressing these events is crucial to ensure comprehensive security assessments, and, therefore, this chart helps you prioritize solving one or multiple reported to a specific group.

Hover over a bar to see the precise number of events.

Vulnerability types by group

See portfolio vulnerability types on the Fluid Attacks platform

This chart informs of the total types of vulnerabilities detected within each group. This information helps you compare projects on the amount of security issue categories encountered.

Hover over a bar to see the precise number of types.

Oldest vulnerability types

See portfolio oldest vulnerability types on the Fluid Attacks platform

This graph highlights the types of vulnerabilities across your portfolio that have remained unmanaged for the longest duration (days). This helps you identify and prioritize long-standing issues.

Hover over a bar to see the precise number of days.

Overall availability of groups

See portfolio availability of groups on the Fluid Attacks platform

This chart shows the percentage of time each group has been impacted by events (i.e., situations that prevented security testing), relative to the group's total lifespan. This allows you to identify one or more groups that might be needing more care.

Hover over a bar to see its complete percentage information.

Days since groups are failing

See portfolio days since failing on the Fluid Attacks platform

This chart presents how long the oldest unsolved event has persisted within each group. This information helps you identify groups with long-standing issues that need urgent resolution to enable security testing.

Hover over a bar to see the exact number of days.

Tags by groups

See portfolio tags by groups on the Fluid Attacks platform

This chart displays all the tags you have created to identify vulnerabilities and how many times each of them is used in the different groups in your portfolio. This helps you analyze security issues across your groups using categories that are especially significant for your team.

Free trial message
Free trial
Search for vulnerabilities in your apps for free with Fluid Attacks' automated security testing! Start your 21-day free trial and discover the benefits of the Continuous Hacking Essential plan. If you prefer the Advanced plan, which includes the expertise of Fluid Attacks' hacking team, fill out this contact form.