Category Metric id Title SLO Weight
Software Development
development_vulnerabilitiesSoftware repositories without critical vulnerabilities
98.00% - 99.00%
0.8
Identity Management
identity_credentialsIdentity - Aged Credentials
98.00% - 99.00%
0.8
identity_dormantIdentity - Inactive Identities
98.00% - 99.00%
0.8
User Security
user_awarenessUsers with awareness training completed
80.00% - 90.00%
0.4
Vulnerability Management
vulnerabilities_criticalSystems with Critical and High vulnerabilities
80.00% - 95.00%
0.8
vulnerabilities_critical_patchingCritical vulnerabilities patched within SLO
80.00% - 95.00%
0.8
Software repositories without critical vulnerabilities
Metric id Category SLO Weight
development_vulnerabilitiesSoftware Development
98.00% - 99.00%
0.8
Software repositories without critical vulnerabilities
Identity - Aged Credentials
Metric id Category SLO Weight
identity_credentialsIdentity Management
98.00% - 99.00%
0.8
Ensure that all user accounts change their passwords regularly.
Identity - Inactive Identities
Metric id Category SLO Weight
identity_dormantIdentity Management
98.00% - 99.00%
0.8
Ensure that all user accounts are active and in use.
Users with awareness training completed
Metric id Category SLO Weight
user_awarenessUser Security
80.00% - 90.00%
0.4
This metric demonstrates the users that have completed the security awareness training within the last 12 months.
Systems with Critical and High vulnerabilities
Metric id Category SLO Weight
vulnerabilities_criticalVulnerability Management
80.00% - 95.00%
0.8
Ensure that all systems do not have any urgent vulnerabilities that can impact the risk.
Critical vulnerabilities patched within SLO
Metric id Category SLO Weight
vulnerabilities_critical_patchingVulnerability Management
80.00% - 95.00%
0.8
Ensure that all systems do not have any urgent vulnerabilities that can impact the risk.