Archer^® Exchange Documentation

Risk Based Security (RBS) provides detailed information and analysis on Vulnerability Intelligence, Data Breaches, and Vendor Risk Ratings. Our products, VulnDB and Cyber Risk Analytics (CRA), provide organizations access to the most comprehensive vulnerability and vendor risk knowledge bases available, including advanced search capabilities, access to raw data via RESTful API, and email alerting to assist organizations in taking the right actions in a timely manner. In addition, RBS’ YourCISO offering provides organizations with on-demand access to high quality information security and risk management resources in one, easy to use web portal.

VulnDB is the most comprehensive and timely vulnerability intelligence available and provides actionable information about the latest in security vulnerabilities. VulnDB allows organizations to search on and be alerted to the latest vulnerabilities, both in end-user software and the third-party libraries or dependencies that developers use to build applications. A subscription to VulnDB provides organizations with simple to understand ratings and metrics on both vendors and products, and how each contributes to the organization’s risk-profile and cost of ownership.

When a new vulnerability is disclosed, organizations need to know if and where they are impacted without having to do a vulnerability scan of their environment. VulnDB contains over 65,000 additional vulnerabilities not found in the frequently relied-upon Common Vulnerabilities and Exposures (CVE) database and a much higher degree of information for each vulnerability, providing the richest, most complete vulnerability intelligence available. VulnDB helps customers better address points of risk across their organization – from application development and IT infrastructure management to security operations, vendor risk management, and procurement.

Instead of relying on legacy vulnerability scanning, the VulnDB integration with RSA Archer allows organizations to easily map vulnerability data to the assets and vendors in their environment and quickly identify if a newly disclosed vulnerability will impact them. Armed with this insight, organizations can efficiently prioritize and plan remediation activities, and also quickly identify relevant vulnerability data during security incident response activities.

Integration Features

Risk Based Security VulnDB integration with RSA Archer enables organizations:

• Access to a richer and more timely pool of vulnerability intelligence than is available from CVE/NVD and other sources.
• Insight into vulnerabilities that could pose risk to an organization without the need for an additional vulnerability scan.
• Ability to more effectively and efficiently prioritize vulnerabilities to be remediated.

Solution and Platform Information

• Solution Area: IT & Security Risk Management
• Impacted Use Cases:  RSA Archer IT Security Vulnerabilities Program
• Supported Platform Version: This offering has been validated on RSA Archer Platform release 6.4 SP1 or later.

For More Information

To learn more about the Risk Based Security VulnDB RSA Ready certified integration:

• Review the Implementation Guide
• Download the Integration Package

For Additional Support

To learn more about Risk Based Security, please contact Sales@riskbasedsecurity.com or 855.RBS.RISK. For technical support questions, please contact Support@riskbasedsecurity.com.