Abstract: The invention relates generally to monitoring and managing network components, such as monitoring the network components to determine the vulnerabilities of network components, implementing remediation plans for the vulnerabilities, instituting remediation suppression for the vulnerabilities, and taking consequence actions for the vulnerabilities when remediation is no longer suppressed and fails to be implemented. Remediation suppression may be implemented for the vulnerability when the vulnerability is determined to be an acceptable vulnerability. The remediation suppression may be based on a request from a user, based on organization policy, and/or based on logic determining that the vulnerability is acceptable. When the remediation suppression occurs at least a part of the remediation plan, consequence action, and/or reporting is suppressed.

Abstract: The invention relates generally to monitoring and managing network components, such as monitoring the network components to determine the vulnerabilities of network components, implementing remediation plans for the vulnerabilities, instituting remediation suppression for acceptable uses, instituting network component exceptions and rolling exceptions to other network components automatically, and taking consequence actions for the vulnerabilities. A network component exception may be implemented for a network component when the network component data meets custom criteria. When the custom criteria is met, the network component is automatically rolled into the network component exception process to automatically associate network component exceptions with network components that have data that meets the custom criteria. The network component exceptions prevent vulnerability actions from being taken with respect to the associated network components.

Abstract: The invention relates generally to monitoring and managing network components, such as monitoring the network components to determine the vulnerabilities of network components, implementing remediation plans for the vulnerabilities, instituting remediation suppression for the vulnerabilities, and taking consequence actions for the vulnerabilities when remediation is no longer suppressed and fails to be implemented. Remediation suppression may be implemented for the vulnerability when the vulnerability is determined to be an acceptable vulnerability. The remediation suppression may be based on a request from a user, based on organization policy, and/or based on logic determining that the vulnerability is acceptable. When the remediation suppression occurs at least a part of the remediation plan, consequence action, and/or reporting is suppressed.

Abstract: The invention relates generally to monitoring and managing network components, such as monitoring the network components to determine the vulnerabilities of network components, implementing remediation plans for the vulnerabilities, instituting remediation suppression for acceptable uses, instituting network component exceptions and rolling exceptions to other network components automatically, and taking consequence actions for the vulnerabilities. A network component exception may be implemented for a network component when the network component data meets custom criteria. When the custom criteria is met, the network component is automatically rolled into the network component exception process to automatically associate network component exceptions with network components that have data that meets the custom criteria. The network component exceptions prevent vulnerability actions from being taken with respect to the associated network components.