Rapid7 Announces Improvements to Goals and SLAs in InsightVM

We know that proving the efficacy of your vulnerability management program is no easy task. But with the Goals and SLAs feature in InsightVM, you can ensure you’re making (and tracking) progress toward your goals and service-level agreements (SLAs) at an appropriate place, as well as maintaining compliance with the standards you’ve set for your program.

We’re excited to announce that creating a goal or SLA in InsightVM just became a lot simpler. Instead of following a four-step process, we’ve gotten it down to three: use, sort, and define your data, establish the conditions you want to meet, and save your goal using our three-step wizard.

We have also removed the need to choose among SLAs, time-bound, or continuous goal types. Instead, you simply create a goal with your parameters, then the wizard will automatically set the goal type based on your configuration. You can set a goal to track remediation efforts or configure assets.

If you’re not exactly sure what specific goal you want to create, recommended goals are now more easily discoverable in the UI (see screenshot below!).

What are some use cases for Goals and SLAs?

• Use case 1: Create a goal based on a deadline
  • E.g., “I want to upgrade my assets from Windows 7 to Windows 10 by Dec. 31, 2020.”
• Use case 2: Create a goal based on a relative timeframe
  • E.g., “Remediate 100% of critical vulnerabilities in MS Patch (categorized as Patch Tuesday) on Windows Server 2016 assets.”
• Use case 3: Create a goal based on an ongoing timeframe
  • E.g., “Continually check for high-risk assets to ensure they do not have port 22 open in my environment.”

For more information, please check out our updated help documentation on creating a goal or SLA.