Financial Services Vulnerability Management Operations

What EY can do for you

EY clients often find similar issues with their vulnerability remediation and the phases of vulnerability lifecycle that feed into and enable remediation activities.

Vulnerability remediation:

• Tasks are not automatically assigned to proper owners.
• Remediation follow-up or validation is often manual.
• Remediation SLAs and exceptions to those SLAs are infrequently tracked and escalated appropriately.

Vulnerability prioritization:

• Often only considers basic risk indicators, like CVSS scores, creating an inaccurate criticality rating.
• If it is automated and considers more detailed vulnerability information, the prioritization criteria are black-boxed or are not customizable.

Remediation monitoring:

• Often manually generated or only partially automated.
• Does not provide direct, actionable data for remediation action correction/escalation.
• Does not incorporate tracking against established SLAs.

Overview

The EY organization’s automated vulnerability lifecycle drives remediation through maximum technology enablement with Tanium and ServiceNow, helping deliver Technology@Speed to equip end-user teams to achieve greater results faster.

Key differentiators

EY business teams can help deliver automation to a client’s vulnerability management lifecycle that provides actionable data on time. Vulnerability feeds from the discovery phase will be processed and acted upon using advanced capabilities.

• Governance: Identify gaps to help create and address policy standards and provide effective guidance.
• Discover: Tanium-enabled automated patching cycles eliminate the bulk of vulnerabilities from operating systems and major software.
• Qualify: Automated prioritization supported by ServiceNow applies custom client-centered criteria to bring critical, un-remediated vulnerabilities front and center.
• Treat: Ticketing integration with ServiceNow automatically triggers workflows for SLA breaches or critical vulnerabilities.
• Monitor: Daily reporting facilitates program performance and risk monitoring at the executive and operational levels with automated dashboarding.

Offering benefits

The EY business teams’ deep industry knowledge and experience is embedded in the ServiceNow platform and powered by Tanium.

• Detailed understanding: The EY business teams’ global experience combined with Tanium’s technical experience helps ensure a detailed understanding of cyber threats — from their origin and patterns to their impact on different business sectors and geographies.
• Resource optimization: If you have already made technology investments, drive greater ROI through enrichment of your toolsets. Also, automation, including automated patching cycles, frees resources to address edge cases without risking vulnerability buildup.
• Live monitoring: Tanium’s robust platform allows for ongoing, real-time system monitoring, flowing data into ServiceNow for action and monitoring. This supports the EY business teams’ ongoing vigilance and strategic advisory, helping ensure that the client’s network stays protected against evolving threats.
• Rapid response: Tanium’s platform helps enable real-time network insights and automated response capacities. Combined with the EY business teams’ consulting experience, this allows for faster, more strategic action against potential threats, coordinated and tracked with ServiceNow’s change management capabilities.
• Customization: Leveraging Tanium and ServiceNow’s flexibility, the EY business teams can tailor vulnerability management capabilities to meet client needs. Prioritization criteria can be customized to utilize existing asset and user information.
• Scalability: ServiceNow and Tanium provide opportunity for coverage scaling across business units or global enterprises, and capability scaling with expansive Tanium and ServiceNow module options.