Skip to main content

Using applications

In Veracode Risk Manager (VRM), an application is a group of assets that are related to a specific business unit or project. Applications are used to organize assets and issues in a way that makes sense for your organization.

This guide will help you get started with creating, editing, and deleting applications in VRM.

For additional information on the best ways to define and manage your applications, contact your Veracode Customer Success Manager.

Create an application

Create an application to group related assets and make it easier to manage and track their security posture.

Prerequisites:

Have the Admin role in VRM.

To complete this task:

  1. Log in to VRM.

  2. Select the Applications icon Applications icon.

  3. Select Add Application.

    Add application window

  4. Enter a name for the application.

  5. Select a value for the application.

  6. Optionally, enter the name or email address of the application owner. The owner value is only for informational purposes.

  7. Optionally, select teams to assign to the application. The teams you select will have access to the application and its assets.

  8. Select Add Application.

After creating your applications, you can add assets to them, create a dashboard to track your security risk per application, and review VRM's solution recommendations of Best Next Actions to reduce risk.

Edit an application

Edit an application to change its name, value, or owner.

Prerequisites:

Have the Admin role in VRM.

To complete this task:

  1. Log in to VRM.

  2. Select the Applications icon Applications icon.

  3. Select the checkbox next to one or more applications you want to edit.

  4. Select Actions > Edit Application.

    Edit application window

  5. Edit the name, value, or owner of the application.

  6. Select Save.

Delete an application

Deleting an application does not delete any of its associated assets.

Prerequisites:

Have the Admin role in VRM.

To complete this task:

  1. Log in to VRM.

  2. Select the Applications icon Applications icon.

  3. Select the checkbox next to one or more applications you want to delete.

  4. Select Actions > Delete Application.

    Delete application window

  5. In the Are you sure? window, select Delete Application.

Application value

When creating an application in VRM, use the Application Value to estimate its business value for your organization. The assigned value is a factor that VRM uses to calculate the risk of the assets in the application.

The Asset Risk Value helps determine how significantly the Application Value affects the risk rating of the assets in the application.

ValueDescriptionAsset Risk Value
Crown JewelTypically mission-critical applications in which issues require urgent remediation. Increases the risk rating of assets in the application that are not also included in another Crown Jewel application.1
HighTypically important applications in which exploitation could cause serious business impact. Increases the risk rating of assets in the application that are not also included in another Crown Jewel or High value application.0.5
MediumTypically external applications in which exploitation could cause some business impact. Has no impact on the risk rating of assets in the application.0
LowTypically internal applications where exploitation would have minimal business impact. Decreases the risk rating of assets in the application that are not also included in a Crown Jewel, High, or Medium value application.-1
UnknownBusiness value of the application is unknown. Has no impact on the risk rating of assets in the application.0
Last updated on