---
title: "Executive Metrics"
slug: "executive-metrics"
updated: 2024-10-29T12:02:05Z
published: 2024-10-29T12:02:05Z
canonical: "help.nucleussec.com/executive-metrics"
---

> ## Documentation Index
> Fetch the complete documentation index at: https://help.nucleussec.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Executive Metrics

## Overview

The Executive Metrics page provides security leaders, managers and executives a simple way to compare a broad set of best practice vulnerability management metrics across asset groups. This article provides an overview on using the Executive Metrics page and a reference section describing each of the available metrics.

## Usage

Selecting **Executive Metrics**, located under **Assets** in the left-menu, takes you to default view of performance metrics for All Assets:

![](https://cdn.document360.io/3888970a-6501-459e-acc9-c47b71c6d64c/Images/Documentation/image(354).png)

### Selecting Asset Groups

- Use the **Select Groups** panel to select one or more asset groups to compare metrics for, then click **Apply**:

![](https://cdn.document360.io/3888970a-6501-459e-acc9-c47b71c6d64c/Images/Documentation/image(355).png)
- Each selected (checked) group will appear as a row in the **Performance Metrics** table on the right.
- The Search box allows you to filter the displayed Asset Groups by entering a search string and pressing **Enter**:

![image.png](https://cdn.document360.io/3888970a-6501-459e-acc9-c47b71c6d64c/Images/Documentation/image%28335%29.png)

### Selecting Metrics

Several common metrics are selected by default when opening the **Executive Metrics** page. To customize which metrics are displayed in the **Performance Metrics** table:

- Click the **Select Metrics** button:

![](https://cdn.document360.io/3888970a-6501-459e-acc9-c47b71c6d64c/Images/Documentation/image(356).png)
- At the top are quick links to **Clear Selections** or **Reset to Default** selections.
- After selecting which metrics to display, along with sub-options like severities to include and/or prior timeframe, click the **Save** button to apply your changes.

### Performance Metrics Table Interactions

Selected Metrics appear as columns in the **Performance Metrics** table. The following capabilities allow you to further analyze can compare metrics across asset groups:

- **Sort** by a given metric by single clicking the center area of column headers:

![image.png](https://cdn.document360.io/3888970a-6501-459e-acc9-c47b71c6d64c/Images/Documentation/image%28338%29.png)
- **Resize columns** by dragging the right edge of the column's, header:

![image.png](https://cdn.document360.io/3888970a-6501-459e-acc9-c47b71c6d64c/Images/Documentation/image%28339%29.png)
- **Reorder columns** by dragging the center area of column headers:

![image.png](https://cdn.document360.io/3888970a-6501-459e-acc9-c47b71c6d64c/Images/Documentation/image%28340%29.png)
- **Freeze Columns**:
  - The Asset Group column is Frozen by default, allowing you scroll horizontally through many metrics without losing context of which asset groups you are comparing:

![image.png](https://cdn.document360.io/3888970a-6501-459e-acc9-c47b71c6d64c/Images/Documentation/image%28341%29.png)
  - You can freeze additional columns by dragging them into the left of the freeze columns:

![image.png](https://cdn.document360.io/3888970a-6501-459e-acc9-c47b71c6d64c/Images/Documentation/image%28342%29.png)

### Saving Views

Saved Views provide the ability to save different combinations of asset group and metrics selections for specific use cases like comparing team performance against SLA metrics or comparing risk and threat intelligence metrics across asset categories.

To save a view:

- After making the modifications you wish to save (asset group selections, metrics selections, sorting, column order, etc.), click the **Save View** button in the header of the Performance Metrics table:

![](https://cdn.document360.io/3888970a-6501-459e-acc9-c47b71c6d64c/Images/Documentation/image(357).png)
- Enter a unique **View Name** (required), optionally you can provide a description for the view, then click **Save**:

![](https://cdn.document360.io/3888970a-6501-459e-acc9-c47b71c6d64c/Images/Documentation/image(358).png)
- Your saved view is now available for quick access in the future under the **Saved Views** dropdown:

![](https://cdn.document360.io/3888970a-6501-459e-acc9-c47b71c6d64c/Images/Documentation/image(359).png)

To modify a Saved View:

- Open the Saved View you wish to modify.
- Make desired changes such as asset group selections, metric selections, etc.
- Click the dropdown arrow next to **Save View**, then select **Save Changes**:

![](https://cdn.document360.io/3888970a-6501-459e-acc9-c47b71c6d64c/Images/Documentation/image(360).png)

To modify the Name and Description of a Saved View:

- Click the view selector dropdown, then click the **Edit** button next to the Save View you wish to update:

![](https://cdn.document360.io/3888970a-6501-459e-acc9-c47b71c6d64c/Images/Documentation/image(361).png)
- Update the **Name** and/or **Description**, then click **Save**:

![](https://cdn.document360.io/3888970a-6501-459e-acc9-c47b71c6d64c/Images/Documentation/image(362).png)

To delete a Saved View:

- Click the view selector dropdown, then click the **Delete** button next to the Save View you wish to delete:

![](https://cdn.document360.io/3888970a-6501-459e-acc9-c47b71c6d64c/Images/Documentation/image(363).png)
- When prompted, click **Delete** to confirm deletion of the saved view, or click **Cancel** to return.

## Metrics Reference

The following table provides a reference for available metrics along with a description for how each is calculated. All metrics are calculated based on the number finding instances, assets where the finding was discovered, not unique findings.

> [!NOTE]
> **NOTE:**Unless otherwise specified, vulnerabilities with a severity of Informational are not included when calculating metrics.

| Category | Metric | Description |
| --- | --- | --- |
| Vulnerabilities | Active Vulnerabilities by Severity | Count of active vulnerability instances by severity. |
| Active Vulnerabilities by Status | Count of active vulnerability instances by status (Active, Exception Requested, In Progress, etc.) |
| Average Age of Active Vulnerabilities by Severity | Average number of days from Discovered Date until today for active vulnerability instances by severity. |
| Discovered in Last {#} Days by Severity | Count of vulnerability instances discovered in the last {#} days by severity. |
| Resolved in Last {#} Days by Severity | Count of vulnerability instances remediated in the last {#} days by severity. |
| % Churn in the Last {#} Days by Severity | Ratio of discovered vs. resolved vulnerability instances in the last {#} days by severity. This provides they ability to track whether or not your remediation velocity is keeping pace with rate at which new vulnerabilities are being discovered. |
| SLAs & Remediation | % Past Due Vulnerabilities by Severity | Percent of active vulnerability instances past their due date by severity. |
| Past Due Vulnerabilities by Severity | Count of active vulnerability instances with due dates in the past by severity. |
| % Active Within SLA by Severity | Percent of active vulnerability instances not past their due date. |
| % Resolved Past SLA in Last {#} Days by Severity | Percent of vulnerability instances resolved past their due date for the last {#} days by severity. |
| Resolved Past SLA in Last {#} Days by Severity | Count of vulnerability instances resolved past their due date for last {#} days by severity. |
| % Resolved Within SLA in Last {#} Days by Severity | Percent of vulnerability instances resolved on or before their due date for the last {#} days by severity. |
| Resolved Within SLA in Last {#} Days by Severity | Count of vulnerability instances resolved on or before their due date for last {#} days by severity. |
| Active Vulnerabilities with no SLA by Severity | Count of active vulnerability instances without a set due date by severity. |
| MTTR for Vulnerabilities Resolved in Last {#} Days by Severity | Average number of days from Discovered Date to Remediated Date for vulnerability instances resolved in the last {#} days by severity. |
| Resolved in Last {#} Days by Status | Number of vulnerability instances resolved as {Status} in the last {#} days. |
| Risk & Threat Intelligence | Risk Score | Nucleus Risk Score for the asset group. |
| Mandiant Risk Rating | Count of active vulnerability instances by Mandiant Risk Rating. |
| Mandiant Zero Day by Severity | Count of active Zero Day vulnerability instances based on Mandiant threat intelligence data by severity. |
| Mandiant Exploited in the Wild by Severity | Count of active vulnerability instances known to be exploited in the wild based on Mandiant threat intelligence data by severity. |
| Mandiant Widely Exploited by Severity | Count of active vulnerability instances known to be widely exploited based on Mandiant threat intelligence data by severity. |
| Mandiant Exploited by Malware by Severity | Count of active vulnerability instances with known malware exploits based on Mandiant threat intelligence data by severity. |
| Compliance | Compliance Pass % | Percent of compliance finding instances with a result of Passed or Warning. |
| Compliance Passes | Number of active compliance finding instances with a result of Passed or Warning. |
| Assets | Number of Assets | Count of active assets in an asset group. |
| Ticketing | Open Tickets | Count of open tickets created in external ticketing systems. |
| Tickets Created in the Last {#} Days | Count of external tickets created in the last {#} days. |
| Tickets Closed in the Last {#} Days | Count of external tickets closed in the last {#} days. |
| % Past Due Vulnerabilities Without Tickets by Severity | Percent of active vulnerability instances past due without tickets created by severity. |
| % Vulnerabilities Without Tickets by Severity | Percent of active vulnerability instances without tickets created by severity. |