Manage Mondoo
Define Your Team's Service-Level Agreement
Set targets for how quickly your team commits to remediating findings, and track real performance against them.
A service-level agreement (SLA) in Mondoo is a target for how quickly your team commits to remediating security findings. Mondoo tracks your team's actual mean time to remediate (MTTR) and compares it against the targets you've set, so you can see how you're doing at a glance.
The chart lives on your space dashboard:
Mondoo breaks the SLA down by risk score and shows:
- Your mean time to remediate (MTTR), measured from when each finding was discovered.
- The number of findings already past their SLA date and still open.
- The number of findings approaching their SLA date.
Default targets
| Risk score | Days to remediate | Days until approaching |
|---|---|---|
| Critical | 30 | 23 |
| High | 30 | 23 |
| Medium | 60 | 53 |
| Low | 90 | 83 |
Customize the targets
Only team members with Editor or Owner access can perform this task.
-
Navigate to the space.
-
In the left navigation, select Settings, then the Security Model tab.
-
For each risk score, set two numbers:
- Days to remediate is how long your team has to fix a finding before it's past SLA.
- Days until approaching is when Mondoo starts warning you on the space dashboard that the SLA date is close.
Press ENTER or TAB after typing a new number, or Mondoo won't save the change.