Files
Anthropic-Cybersecurity-Skills/skills/performing-endpoint-vulnerability-remediation/assets/template.md
T

1.9 KiB

Endpoint Vulnerability Remediation Template

Scan Information

Field Value
Scanner Nessus / Qualys / Rapid7
Scan Date
Scope
Total Findings
Scan Policy

Remediation Priority Summary

Priority Count SLA Deadline Status
P1 (Critical) 14 days
P2 (High) 30 days
P3 (Medium) 60 days
P4 (Low) 90 days

CISA KEV Vulnerabilities (Mandatory Remediation)

CVE Affected Hosts CVSS Due Date Remediation Status

Remediation Actions

CVE/Plugin Host(s) Action Type Details Assigned To Status
Patch
Config change
Workaround
Accept risk

Patch Deployment Schedule

Phase Target Date Maintenance Window Rollback Plan
Test ring 5% endpoints
Pilot ring 20% endpoints
Production Remaining

Risk Acceptance Register

CVE Host CVSS Business Justification Compensating Control Approved By Expiry

Validation Results

CVE/Plugin Host Pre-Remediation Post-Remediation Verified By
Vulnerable Fixed / Still Vulnerable

Metrics

Metric Value
Total vulnerabilities
Remediated
Remediation rate %
MTTR (Mean Time to Remediate) days
SLA compliance %
Overdue count

Sign-Off

Role Name Date
Vulnerability Analyst
Patch Manager
Security Manager