Add a Vulnerability to a POAM

Local guidelines may differ; however, you will typically Add to POAM when:

• A vulnerability is past due
• A vulnerability will not be fixed within a reasonable time frame
• A vulnerability is a false positive
• SA requests Risk Acceptance
• Management needs additional information on a high visibility vulnerability

Ryskview does not allow the same POAM vulnerability to be listed more than once on a POAM List. If a POAM vulnerability already exists on the selected POAM List, then Ryskview will do one of the following:

• If POAM status is Open, RA Requested, or Remediated for different Asset, then Ryskview will add new Asset(s) to existing POAM vulnerability without prompting for new Milestone

• If POAM status is Risk Accepted or False Positive for same Asset, then Ryskview will add new Asset to existing POAM item without prompting for new Milestone

• If POAM status is Closed and new Asset is added, then Ryskview will prompt for new Milestone and re-open the closed POAM vulnerability.

• If POAM status is Closed and same Asset with same vulnerability is found, then Ryskview will automatically re-open the POAM vulnerability with a new milestone and Scheduled Completion Date of the date the scan was imported.