Management and Remediation

Introduction

Per regulatory compliance, Information Security team conducts periodic vulnerability assessment (VA) scans on all Symantec internal networks. Business units in QualysGuard are used to delegate remediation responsibilities. If you are a business unit manager, please follow these instructions for assistance on managing your business unit.

If you need assistance or guidance on remediation, please refer to “Qualys new user and remediation guidelines” document.

Asset Groups

Business units start with Asset Groups. Asset Groups are logical groping of networks which belongs to your business unit.

Logon to QualysGuard and click “Asset Groups” under Tools. On the right pane, you will see asset groups which are part of your business unit:

Screen shot here….

Asset groups are owned and managed by IT Security Operations team. For asset group support, please contact Security Operations team: IT – Security Operations.

Vulnerability Scans

Information Security team conducts periodic VA scanning on all asset groups. Current schedule for VA scanning is once a quarter or more.

Prior to quarterly scans, you will receive an IT advance notification email from Operation Global Shield (see example below):

When VA scans start, you may receive several emails from “Qualys Inc.” with the subject “QualysGuard: Scan Results”. These are scan status emails. Look for “Scan Status” line in each email. If Scan Status reads FINISHED, then follow the instructions from “Qualys new user and remediation guidelines” document.

User Accounts

If you would like to delegate remediation responsibilities further to your team members, please contact IT Security Operations (IT – Security Operations) and have them create new user account for your team members.

You can also create new accounts yourself as the business unit manager. In QualysGuard, goto User Accounts under Tools and click New – User…

Screen shot here….

Enter account details as shown below. Double check the email address and make sure user role is: Reader and under asset groups, add asset groups which will belong to the new user:

Screen shot here….

Click Save when done (you may need to scroll all the way down)

If you want to change a users asset groups later on, you can always edit your business unit users and add/remove asset groups as necessary.

Currently VA scans are managed by Security Operations team. If you want a VA scan run on an asset group in your business unit, please contact Security Operations team: (IT – Security Operations)

For remediation assistance, please refer to the “Qualys new user and remediation guidelines” document.