Skip to main content

Analytics

The Analytics module is a tool for executives and AppSec administrators, providing valuable and actionable insights into their data in Checkmarx One. With the ability to switch between Totals and Over Time modes, users can clearly understand their application security landscape. Whether analyzing Scans or Vulnerabilities, this module offers various informative charts for better decision-making.

Vulnerabilities KPIs offer actionable insights, allowing users to directly access vulnerability details with one click. This feature speeds up remediation, reduces exposure, and bridges the gap between AppSec and development teams.

To help you with data analysis, the module also features a flexible tag filtering system.

The Analytics module is a user-friendly tool for making informed decisions, enhancing security practices, and optimizing your organization's application security posture.

Permissions

To execute various actions in the Analytics feature, a user needs to be assigned one of the following permissions:

  • analytics-reports-admin - View all analytics dashboards and reports.

  • analytics-scan-dashboard-view - View scan dashboard.

  • analytics-vulnerability-dashboard-view - View vulnerability dashboard.

  • analytics-executive-overview-view - View executive overview dashboard.

  • manage-reports - Export, share the dashboard, and generate a report.

Filtering

The Analytics module offers advanced data filtering options, allowing users to customize their analysis to specific criteria. The available filters can be accessed from the drop-down menu at the top-right corner.

Analytics_Filtering.png

The following logic is applied to filtering:

  • The filter will not be applied if no values are selected or entered for a particular attribute.

  • Within a single filter, selected values are combined using an OR operator. For instance, if you choose the values SAST and SCA for the Scanners filter, Checkmarx One will display issues associated with SAST or SCA scanners.

  • Different filters are combined using an AND operator. For example, if you select SAST for the Scanners filter and a specific project for the Projects/Apps filter, Checkmarx One will only display issues that match both criteria: SAST severity and the selected project.

Specific filters are described below.

Range

Users can define custom date ranges to analyze data within specific timeframes, such as hourly, daily, weekly, monthly, or annually. This is particularly useful for identifying trends and evaluating the impact of changes in security practices over time.

Scanners

This filter lets you narrow your analysis to data generated by specific scanners. By selecting particular scanners, you can assess their performance and effectiveness in identifying vulnerabilities and securing your applications.

Tags

This filter type allows you to focus your analysis on subsets of your data by choosing the existing project and application tags for filtering and categorization. Each tag in the list is labeled as project or application to indicate its level.

SAST Vulnerabilities

This filtering option is available only in the Vulnerabilities tab. It allows you to select a specific vulnerability by name from a dropdown list.

sast-vulns-filter.png

Filtering by SAST vulnerabilities impacts two widgets: the "Top 20 Vulnerabilities" and the "Top 20 Oldest Vulnerabilities." The data displayed in these widgets will be adjusted according to the selected vulnerability.

All Proj./Apps

This filter allows you to toggle between viewing Projects or Applications and searching for specific applications or project names in the selected category.

All_Proj.png

Data presentation modes

In the Analytics module, users can choose between two modes of data presentation: Totals and Over Time. These modes serve different analytical purposes and allow for a more comprehensive understanding of your data.

Notice

The Analytics charts show data starting from December 19 onward. No data from before this date is available.

Totals mode

In the Totals mode, the data is aggregated to provide a snapshot of the cumulative or aggregate statistics. This mode is ideal for assessing your applications and projects' overall performance and security status without considering specific time intervals.

Scans_Totals.png

It's useful for gaining insights into the current state of your data, such as the total number of successful and failed scans, lines of code, and projects. This mode offers a general view of your security posture.

Over Time mode

The Over Time mode, on the other hand, focuses on tracking and visualizing how your data security evolves across specific time intervals. It's designed to help you monitor trends, patterns, and changes in your security landscape.

Scans_Over_Time.png

This mode is particularly useful for identifying shifts in your program's effectiveness, understanding the impact of security improvements or practice changes, and planning for future security initiatives. You can set custom date ranges to see how metrics have changed over time, which is essential for trend analysis.

Switching between these two modes provides a well-rounded perspective of your data. For instance, you can use Totals to see the total number of failed scans across all projects and then switch to Over Time to track whether the frequency of failed scans has decreased or increased over the past year, helping you set priorities for ongoing security efforts.

Data categories

In the Analytics module, users can switch between two main categories of data: Scans and Vulnerabilities. These categories provide different perspectives on your data and allow for a comprehensive analysis of your security posture.

Notice

The data presented in the Analytics charts is not entirely real-time. Please consider a potential delay of up to 24 hours in its availability.

In this section: