Bitsight | Marketplace

Details
Content
Dependencies
Version History

Bitsight Integration will allow you visibility into Bitsight findings for remediation in your security program.

Note: Support for this pack moved to Bitsight June, 2021.

Bitsight for Security Performance Management (SPM) enables CISOs to use an external view of security performance to measure, monitor, manage, and report on their cybersecurity program performance over time, and to facilitate a universal understanding of cyber risk across their organization. This improved understanding enables security leaders to make more informed decisions about their cybersecurity program, including where to focus their limited resources in order to achieve the greatest impact, where to spend money, and how to manage their cyber risk more effectively.

The data-driven metrics within Bitsight indicate if the cybersecurity program is performing up to the expectations set by internal goals and objectives, industry best practices, regulators, customers, and other internal or external stakeholders. The Bitsight Security Rating, the industry’s original cybersecurity rating score, provides a trusted metric that reflects the organization’s cybersecurity program performance over time. By combining the insights gained from Bitsight SPM with the Bitsight Security Rating, security leaders provide a more complete view of their cybersecurity program performance over time and help to bring about a universal understanding of cyber risk to the Board of Directors and other stakeholders.

Take action on Bitsight findings information in your security program and leverage Cortex XSOAR's incident management workflows for automation of managing security incidents. Bitsight’s visibility enables you to pinpoint and control the sources of infections in your company infrastructure, seamlessly going from awareness to rapid remediation. The findings information reveals associated IP addresses, destination ports, and more, to assist your company in connecting the security and IT teams to respond faster and more effectively to threats.

Access to and use of the Bitsight for Palo Alto Connector is subject to the Bitsight for Palo Alto Connector Terms of Service and BitSight's Privacy Policy (collectively, the "Bitsight Terms") as well as and any other terms of service or use noted herein.

Note: Support for this pack moved to Bitsight June, 2021.

Take action on Bitsight findings information in your security program and leverage Cortex XSIAM's incident management workflows for automation of managing security incidents. Bitsight’s visibility enables you to pinpoint and control the sources of infections in your company infrastructure, seamlessly going from awareness to rapid remediation. The findings information reveals associated IP addresses, destination ports, and more, to assist your company in connecting the security and IT teams to respond faster and more effectively to threats.

Classifiers

Name	Description
BitSight - Classifier
BitSight - Incoming Mapper	Maps incoming BitSight Alert field

Incident Fields

Name	Description
BitSight Risk Vector Label	BitSight Risk Vector Label
BitSight Assets	Assets information of Bitsight
BitSight Risk Category	BitSight Risk Category
BitSight Affects Rating	BitSight Affects Rating
BitSight Remaining Decay	BitSight Remaining Decay
BitSight Temporary Id	Temporary Id of BitSight findings
BitSight Tags	BitSight Tags
BitSight Comments	BitSight Comments
BitSight Rolledup Observation Id	BitSight Rolledup Observation Id
BitSight Risk Vector	BitSight Risk Vector
BitSight Related Findings	BitSight Related Findings
BitSight Severity Category	BitSight Severity Category
BitSight Evidence Key	BitSight Evidence Key

Incident Types

Name	Description
BitSight Findings

Integrations

Name	Description
Bitsight for Security Performance Management (Partner Contribution)	Use the "Bitsight for Security Performance Management" Integration to get company guid, details, and findings. This integration also allows to fetch the findings by using the fetch incidents capability.

Layouts

Name	Description
BitSight Findings

Classifiers

Name	Description
BitSight - Classifier
BitSight - Incoming Mapper	Maps incoming BitSight Alert field

Incident Fields

Name	Description
BitSight Temporary Id	Temporary Id of BitSight findings
BitSight Severity Category	BitSight Severity Category
BitSight Rolledup Observation Id	BitSight Rolledup Observation Id
BitSight Remaining Decay	BitSight Remaining Decay
BitSight Risk Vector	BitSight Risk Vector
BitSight Affects Rating	BitSight Affects Rating
BitSight Risk Vector Label	BitSight Risk Vector Label
BitSight Evidence Key	BitSight Evidence Key
BitSight Related Findings	BitSight Related Findings
BitSight Comments	BitSight Comments
BitSight Tags	BitSight Tags

Incident Types

Name	Description
BitSight Findings

Integrations

Name	Description
Bitsight for Security Performance Management (Partner Contribution)	Use the "Bitsight for Security Performance Management" Integration to get company guid, details, and findings. This integration also allows to fetch the findings by using the fetch incidents capability.

Required Content Packs (2)

Pack Name	Pack By
Base	By: Cortex XSOAR
Filters And Transformers	By: Cortex XSOAR

Optional Content Packs (2)

Pack Name	Pack By
Common Types	By: Cortex XSOAR
Phishing	By: Cortex XSOAR

All level dependencies (2)

Pack Name	Pack By
Filters And Transformers	By: Cortex XSOAR
Base	By: Cortex XSOAR

1.1.21 - 819156 (February 11, 2024)

Integrations

Bitsight for Security Performance Management

Updated the branding from the BitSight to Bitsight.
Updated the Docker image to: demisto/python3:3.10.13.87159.

Layouts

BitSight Findings
Updated the tab name from the BitSight Findings to Bitsight Findings.

Related pull requests:
- 32793
- 32777

Download

1.1.20 - 762016 (January 14, 2024)

Integrations

BitSight for Security Performance Management

Updated the Docker image to: demisto/python3:3.10.13.84405.

Related pull requests:
- 32183

Download

1.1.19 - 722180 (December 28, 2023)

Integrations

BitSight for Security Performance Management

Updated the Docker image to: demisto/python3:3.10.13.83255.

Related pull requests:
- 31828

Download

1.1.18 - R6950398 (November 21, 2023)

Integrations

BitSight for Security Performance Management

Updated the Docker image to: demisto/python3:3.10.13.73190.

Related pull requests:
- 29652

Download

1.1.17 - 6170593 (August 28, 2023)

Integrations

BitSight for Security Performance Management

Updated the Docker image to: demisto/python3:3.10.13.72123.

Related pull requests:
- 29262

Download

1.1.16 - 5998185 (August 9, 2023)

Integrations

BitSight for Security Performance Management

Updated the Docker image to: demisto/python3:3.10.12.68300.

Related pull requests:
- 28856

Download

1.1.15 - R5866730 (July 25, 2023)

Integrations

BitSight for Security Performance Management

Updated the Docker image to: demisto/python3:3.10.12.65389.

Related pull requests:
- 28434

Download

1.1.14 - R5801668 (July 18, 2023)

Integrations

BitSight for Security Performance Management

Updated the Docker image to: demisto/python3:3.10.12.63474.

Related pull requests:
- 27689

Download

1.1.13 - 5418978 (June 1, 2023)

Integrations

BitSight for Security Performance Management

Updated the Docker image to: demisto/python3:3.10.11.61265.

Related pull requests:
- 27114

Download

1.1.12 - 5287046 (May 17, 2023)

Integrations

BitSight for Security Performance Management

Updated the Docker image to: demisto/python3:3.10.11.58677.

Related pull requests:
- 26574

Download

1.1.11 - R5170573 (May 2, 2023)

Integrations

BitSight for Security Performance Management

Updated the Docker image to: demisto/python3:3.10.11.56082.

Related pull requests:
- 26218

Download

1.1.10 - 5060481 (April 17, 2023)

Integrations

BitSight for Security Performance Management

Updated the Docker image to: demisto/python3:3.10.11.54132.

Related pull requests:
- 25910

Download

1.1.9 - 4954430 (April 2, 2023)

Integrations

BitSight for Security Performance Management

Updated the Docker image to: demisto/python3:3.10.10.51930.

Related pull requests:
- 25654

Download

1.1.8 - 4835020 (March 17, 2023)

Integrations

BitSight for Security Performance Management

Updated the Docker image to: demisto/python3:3.10.10.49934.

Related pull requests:
- 25346

Download

1.1.7 - R4718798 (March 1, 2023)

Integrations

BitSight for Security Performance Management

Updated the Docker image to: demisto/python3:3.10.10.48392.

Related pull requests:
- 24908

Download

1.1.6 - R4646022 (February 19, 2023)

Integrations

BitSight for Security Performance Management

Updated the Docker image to: demisto/python3:3.10.10.47713.

Related pull requests:
- 24647

Download

1.1.5 - R4618697 (February 15, 2023)

Layouts

BitSight Findings
This item is no longer supported in XSIAM.

Related pull requests:
- 24224

Download

1.1.4 - 4227458 (December 15, 2022)

Integrations

BitSight for Security Performance Management

Updated the Docker image to: demisto/python3:3.10.9.40422.

Related pull requests:
- 23055

Download

1.1.3 - 3567573 (August 30, 2022)

Integrations

BitSight for Security Performance Management

Updated the Docker image to: demisto/python3:3.10.5.33323.
Note: the grade argument in bitsight-company-findings-get command is refactored to be in upper case.

Related pull requests:
- 20807
- 20753
- 14484
- 14439
- 14469
- 14483
- 14380
- 14422
- 14465
- 14442
- 14490
- 14492
- 14493
- 14130
- 14489
- 14382
- 14502
- 14124
- 14482
- 14503
- 14499
- 14466
- 12770
- 14501
- 14375
- 12795
- 14350
- 14507
- 13848
- 14378
- 13857
- 14512
- 14384
- 14516
- 14500
- 14481
- 14464
- 14522
- 14459
- 14525
- 14523
- 14076
- 14532
- 14368
- 14519
- 14455
- 13905
- 14537
- 14540
- 14538
- 14372
- 14072
- 14524
- 14498
- 14536
- 14302
- 14550
- 14505
- 14542
- 14468
- 14555
- 14556
- 14541
- 14526
- 14552
- 12335
- 14529
- 14561
- 14470
- 14331
- 13676
- 14475
- 11589
- 14568
- 14569
- 14565
- 13875
- 14558
- 13550
- 14578
- 14579
- 13902
- 14583
- 14511
- 14557
- 14585
- 14587
- 14476
- 14451
- 14596
- 14553
- 14517
- 14508
- 14605
- 14609
- 14607
- 14599
- 14480
- 14600
- 14545
- 14608
- 14604
- 14548
- 14543
- 14602
- 14590
- 14430
- 14611
- 14614
- 14376
- 14613
- 14612
- 14531
- 14591
- 13994
- 14564
- 14615
- 13924
- 14352
- 14626
- 14635
- 14633
- 14632
- 14622
- 14634
- 14625
- 14631
- 14636
- 14598

Download

1.1.2 - 3556969 (August 29, 2022)

Integrations

BitSight for Security Performance Management

Updated the Docker image to: demisto/python3:3.10.5.31928.

Related pull requests:
- 20798

Download

1.1.1 - 3379905 (August 2, 2022)

Incident Fields

BitSight Risk Category

Related pull requests:
- 20257

Download

1.1.0 - 2830268 (April 27, 2022)

Integrations

BitSight for Security Performance Management

Removed unnecessary Server URL parameter.
Removed parameter Incident Daily Fetch time since it restricted incident fetch to once a day at a particular time and is absolute as all versions of XSOAR above 6.0.0 enforce parameter Incidents Fetch Interval which can achieve the same.
change command name bitsight-get-company-details to bitsight-company-details-get.
change command name bitsight-get-company-findings to bitsight-company-findings-get.
change command name bitsight-get-companies-guid to bitsight-companies-guid-get.
Merged and added contexts (available in the existing API) for existing commands.
Updated and corrected context key types and their descriptions for existing commands.
Updated integration description to include API token generation steps.
Added test playbook BitSight for Security Performance Management-Test.
Updated integration logo to a one with size 120x50.
Updated the Docker image to: demisto/python3:3.10.4.28442.

Layouts

BitSight Findings

Removed un-mapped fields First Seen, Last Seen and Duration.

Mappers

BitSight - Incoming Mapper

Added mapping for fields BitSight Comments and BitSight Related Findings.
Added transformer in severity mapping to convert response severities to XSOAR specified severity categories.

Download

1.0.13 - 2430267 (February 17, 2022)

Integrations

BitSight for Security Performance Management

Documentation and metadata improvements.
Updated the Docker image to: demisto/python3:3.10.1.25933.

Download

PUBLISHER

Bitsight

PLATFORMS

Cortex XSOARCortex XSIAM

INFO

Certification	Certified	Read more
Supported By	Partner
Created	March 31, 2021
Last Release	February 11, 2024

WORKS WITH THE FOLLOWING INTEGRATIONS:

Bitsight for Security Performance Management

DISCLAIMER

Content packs are licensed by the Publisher identified above and subject to the Publisher’s own licensing terms. Palo Alto Networks is not liable for and does not warrant or support any content pack produced by a third-party Publisher, whether or not such packs are designated as “Palo Alto Networks-certified” or otherwise. For more information, see the Marketplace documentation.