CSIRT Plan#
The CSIRT Plan is designed for security departments responsible for managing vulnerabilities across multiple systems. It adds features for company-wide cross-functional management and includes CSIRT-specific permissions.
Switching to the CSIRT Plan requires contacting us separately. Please reach out through the FutureVuls homepage. Please also refer to the "CSIRT Plan FAQ".
Newly Added Features#
In addition to all the features of the Standard Plan, it includes features for efficiently managing multiple systems.
Group Sets#
This feature allows you to bundle multiple groups and manage them cross-functionally. You can configure vulnerability assignees and excluded software across all groups at once. It also includes a dashboard that shows vulnerability trends and how long tasks have been open.
It also includes the following software asset management features:
- Cross-system software search
- Cross-system search for GPL-family OSS licenses
- Cross-system search for library EOL (End-of-Life)
- Cross-system search for malicious packages
Triage Settings#
This lets you set up more flexible and advanced automatic triage rules.
- Advanced automatic triage feature based on a decision tree using SSVC
- Special Alert Tags feature to set priorities for specified vulnerabilities
- Automatic Vulnerability Priority feature to set vulnerability priorities based on rules
- Automatic Ignore Settings feature to hide tasks based on rules
- Task Priority Rule Sets feature to set task priorities based on rules
For more details on triage in FutureVuls, please also refer to the "Vulnerability Management Operational Flow Tutorial".
High-Frequency Detection Processing#
In addition to uploads from the scanner, periodic scans are performed several times a day. This ensures that the latest vulnerability information is incorporated promptly, accelerating the response to zero-day vulnerabilities.
Automatic periodic scans are processed server-side by the FutureVuls service. It matches the registered system configuration against the latest vulnerability database. Even servers in closed networks without internet access, registered via Paste Scan, will have new vulnerabilities continuously detected as they are published.
Management Features for Enterprise Environments#
For other differences between plans, please check "About Plans".
Newly Added Permissions#
The CSIRT Plan adds the following permissions. For details on these permissions and how to change them, please refer to "User Permission Management".
- CSIRT
- Groupset Admin
- Groupset Member