Findings Table: Filters

The following filters and Bitsight filter sets are available for the Findings Table in the Security Performance Management application.

Filters

Asset Importance

Filter by asset importance:

• Critical
• High
• Medium
• Low
• None

Applicable risk types: All

Assigned To

The user assigned to remediate the finding.

Applicable risk types: All

Attributed To

Filter by subsidiary.

Applicable risk types: All

[Date] First Seen

Include findings that were first seen in the past:

• 7 Days
• 1 Month
• 3 Months
• Custom

Applicable risk types: All

[Date] Last Seen

Include findings that were last seen in the past:

• 7 Days
• 1 Month
• 3 Months
• Custom

Applicable risk types: All

[Date] Status Update Date

Include findings with a remediation status that was last updated in the past:

• 7 Days
• 1 Month
• 3 Months
• Custom

Applicable risk types: All

Duration

Minimum # of days to maximum # of days.

Applicable risk types: All. See lifetime by risk vector.

File Sharing Category

Filter by file sharing category.

Applicable risk types: File Sharing

Finding Severity

Filter by finding severity:

• Severe
• Material
• Moderate
• Minor

Applicable risk types: Compromised Systems, Diligence (except Mobile Application Security), and File Sharing risk vectors.

Grace Period End Date

Filter by grace period end dates within a specified date range.

Filter Values:

• Start Date
• End Date

Grade

Filter by finding grade:

• Good
• Fair
• Warn
• Bad
• Neutral
• N/A

Applicable risk types: Diligence Risk Vectors

Impacts Risk Vector Grade

Indicates if the finding influences the risk vector grade. See values.

Applicable risk types: All

Infection Family

Filter by malware family.

Applicable risk types: Compromised Systems risk vectors.

Pass / Fail Test

Filter by mobile application analysis results (testing results).

• Pass
• Fail

Applicable risk types: Mobile Application Security

Patching Cadence: Remediated?

• Yes
• No

Applicable risk types: Patching Cadence

Rescan

Filter by rescan status:

• Asset Not Found
• Assumed Remediated
• Failed
• No Status
• Not Remediated
• Partially Remediated
• Remediated
• Replacement Finding
• Scanning

Applicable risk types: Some Diligence risk vectors. See rescan by risk vector.

Remaining Lifetime

Lifetime range (# days).

Filter Values: See lifetime by risk vector.

Remediation Status

• No Status
• Open
• To Do
• Work In Progress
• Resolved
• Risk Accepted

Applicable risk types: All

Risk Vector

Select all risk vectors in a risk category or individual risk vectors.

Applicable risk types: All

Tag

• Public
• Private
• Selected tags

Applicable risk types: All

Vulnerability

Vulnerability classification:

• Confirmed
• Potential
• Selected vulnerabilities

Applicable risk types: Patching Cadence

Vulnerability Severity

Filter by Bitsight severity:

• Severe
• Material
• Moderate
• Minor

Applicable risk types: Patching Cadence

Web App Sec Tests

Filter by assessment categories.

Applicable risk types: Web Application Security

Bitsight Filter Sets

Bad and Warn findings

Get bad and warn findings.

Grade

• Warn
• Bad

Impacts Risk Vector Grade

Yes

Impacts Bitsight Rating

Get findings that impact the grade.

Risk Vectors

• All Compromised Systems risk vectors
• Diligence:
  • SPF Domains
  • DKIM Records
  • TLS/SSL Certificates
  • TLS/SSL Configurations
  • Open Ports
  • Web Application Headers
  • Patching Cadence
  • Insecure Systems
  • Server Software
  • Desktop Software
  • Mobile Software
• User Behavior:
  • File Sharing

Impacts Risk Vector Grade

Yes

Impacts RV Grade Only

Get only the findings that impact the risk vector grade.

Impacts Risk Vector Grade

Yes

New Findings

Get newly observed findings.

First Seen

1d (1 day)

Impacts Risk Vector Grade

Yes

Severe and Material Findings

Get severe and material severity findings.

Finding Severity

• Material
• Severe

Impacts Risk Vector Grade

Yes