Executive Security Posture
Fortify SSC ยท 24 Applications ยท Last scan: Today 09:14 ยท 847 total findings
Critical
47
โ 8 this week
High
183
โ 12 this week
Medium
394
โ 18 vs last week
Low / Info
223
โ 5 vs last week
SLA Breached
14
โ Needs attention
๐ฏ Application Risk Scores
| Application | Risk Score | Critical | Trend | Owner |
|---|---|---|---|---|
PaymentGateway v3.2.1 ยท Java |
12 | โ +8 | Team Alpha | |
CustomerAPI v2.1.0 ยท Node.js |
7 | โ +3 | Team Beta | |
AuthService v1.8.4 ยท Python |
5 | โ +2 | Team Gamma | |
ReportingDashboard v4.0.2 ยท React |
0 | โ -4 | Team Delta | |
DataPipeline v2.3.0 ยท Python |
0 | โ -11 | Team Alpha |
๐ Compliance Status
SOC 2
In Progress74%
โ
CC6.1 Logical Access
โ
CC7.1 System Ops
โ ๏ธ CC8.1 Change Mgmt
ISO 27001
Certified91%
โ
A.12 Operations
โ
A.14 Dev Security
โ
A.16 Incidents
PCI DSS
Gap Found61%
โ
Req 6.3 Vuln Mgmt
โ Req 6.4 Public Apps
โ ๏ธ Req 11.3 Pen Test
โฑ SLA Breach Tracker
| App | Severity | Age | SLA | Status |
|---|---|---|---|---|
| PaymentGateway | Critical | 18d | 7d | Breached +11d |
| AuthService | Critical | 12d | 7d | Breached +5d |
| CustomerAPI | High | 32d | 30d | Breached +2d |
| InventoryMgr | High | 24d | 30d | Due in 6d |
JD
John Developer
john.dev@company.com ยท Team Alpha ยท PaymentGateway, DataPipeline
8
Assigned
3
Due Soon
12
Fixed (30d)
94
Sec Score
My Vulnerabilities
Assigned to you ยท Sorted by SLA urgency
| ID | Vulnerability | App | File : Line | Severity | SLA | Status | Actions |
|---|---|---|---|---|---|---|---|
| F-10441 | SQL Injection CWE-89 ยท OWASP A03 |
PaymentGateway | OrderDao.java:142 | Critical | Breached | Open | |
| F-10448 | Path Traversal CWE-22 ยท OWASP A01 |
PaymentGateway | FileService.java:87 | Critical | Breached | Open | |
| F-10452 | Cross-Site Scripting (XSS) CWE-79 ยท OWASP A03 |
PaymentGateway | UserController.java:203 | High | 5d left | In Review | |
| F-10461 | Hardcoded Credentials CWE-798 ยท OWASP A07 |
DataPipeline | config.py:34 | High | 12d left | Open | |
| F-10477 | Insecure Deserialization CWE-502 ยท OWASP A08 |
PaymentGateway | DataHandler.java:318 | High | 8d left | Open |
Security Team โ Triage & Remediation
All applications ยท 847 findings ยท 47 Critical ยท Fortify SSC live feed
Total Findings
847
โ 34 new this week
Fixed (30d)
142
โ 18% fix rate
Avg Fix Time
11d
โ 2d vs last month
False Positives
6.2%
โ improving
๐ All Findings โ Triage Queue
| ID | Vulnerability | Application | Category | Severity | Assigned | Age | SLA | Status | Actions |
|---|---|---|---|---|---|---|---|---|---|
| F-10441 | SQL Injection CWE-89 |
PaymentGateway | Injection | Critical | J.Developer | 18d | Breached | Open | |
| F-10448 | Path Traversal CWE-22 |
PaymentGateway | File Access | Critical | J.Developer | 12d | Breached | Open | |
| F-10455 | LDAP Injection CWE-90 |
AuthService | Injection | Critical | S.Security | 9d | Breached | In Review | |
| F-10462 | XXE Injection CWE-611 |
CustomerAPI | XML | High | M.Analyst | 28d | 2d left | Open | |
| F-10470 | Insecure Random CWE-338 |
AuthService | Crypto | Medium | J.Developer | 6d | 24d left | Open |
Trends & Risk Scoring
90-day view ยท All applications ยท Fortify SSC historical data
Overall Risk Score
68/100
High Risk โ improving
30d Fix Rate
76%
โ 8% vs prev month
New vs Closed
34/48
Net -14 this week
Security Debt
847
โ accumulating
๐ Vulnerability Trend (90 days)
๐ Team Performance
| Developer | Team | Fixed | Open | Avg Fix Time | Score |
|---|---|---|---|---|---|
| J. Developer | Alpha | 12 | 8 | 9d | |
| S. Security | Gamma | 9 | 5 | 12d | |
| M. Analyst | Beta | 7 | 9 | 15d | |
| R. Engineer | Delta | 14 | 2 | 7d |
๐ Top Vulnerability Categories (CWE)
CWE-89
SQL Injection
CWE-79
XSS
CWE-798
Hardcoded Creds
CWE-22
Path Traversal
CWE-502
Deserialization