Determining risk with formulas
Use formulas to create rules for automated application asset classification. The automated calculation of an application security risk rating is based on the application's description and discovered vulnerabilities.
The first thing to do is verify that the default application security risk rating works for your organization. Next, set priorities based on application, vulnerability type, and by business unit. Security analysts can customize the formula for calculating application security risk rating to fit whatever is meaningful to your specific organization.