Not every vulnerability is a risk to your business, and the sprawl of container usage in development has created too many vulnerabilities for engineers to effectively analyze. Multiple container sources create confusion for security teams. Duplicate risks, overlapping code owners, and uncertain priorities cost platform security engineers valuable time triaging and backlogging potential risks.
Apiiro integrates data across container sources – including artifact registries, scanners across different SDLC stages, and Kubernetes clusters – and deduplicates these into a unified inventory. The result is one clear view of all risks across container sources – giving engineers the insight they need to begin remediation.
By integrating Apiiro with ServiceNow dashboards, you can measure and track key metrics associated with risk severity and connector health. Powered by our proprietary Risk Graph technology, Apiiro leverages the context of security findings from third-party tools and native solutions to determine the risk likelihood factors and risk impact factors associated with each vulnerability. Items ranking on the Risk Graph will automatically populate as Container Vulnerable Items (CVITs).
Integration filtering and control capabilities allow teams to customize which risks to ingest, set ingestion cadence, and log each run for future tracking – keeping all your container security well-documented and easily auditable.
-
Contextualized vulnerabilities and risk impact: Leverage the Apiiro Risk Graph, combining Apiiro's reach and deep code analysis with code-to-runtime context to define what toxic combinations qualify as risks in your organization
-
Unified risk visibility and prioritization: Ingest and correlate risk insights from Apiiro in ServiceNow for centralized risk management across your entire organization. Leveraging deep, code-to-runtime context to connect containers with their vulnerability source code, to expedite remediation processes. These CVITs (Container Vulnerable Items) are added to existing items in SNOW for deeper risk context, coalescing container risk and vulnerability status, including remediation progress, into one unified view of risk
-
Streamlined remediation with workflows: Leverage SNOW workflows and automation to route tasks to the relevant teams across the entire organization
-
Container risk measurement and tracking: In addition to leveraging Apiiro dashboards and reports, you can measure and track key metrics with dedicated ServiceNow dashboards, including metrics on the Apiiro ingested risks (e.g. findings by severity, Total CVITs) and on the connector health (e.g. success rate, throughput, ingestion runs in the past month)
-
Control over what you integrate: Customize which risks to ingest with various filters (e.g. risk level, risk status), set ingestion cadence or run on-demand, and log each run for tracking and auditing
First version of CVR integration
Dependencies should be installed:
- Vulnerability Response and Configuration Compliance for Containers
-
Vulnerability Response