Anonymized case study · Enterprise · 4-person security team
Corventra
Criticals aged 107 days. Highs and mediums sat on the backlog. Six months later, MTTR dropped to 5 days, all severities.
Security Outcomes from Agentic Managed Vulnerability Service
Cumulative Remediations
Historical totals: how much has been done.
Vulns Remediated
6.6M
~280K remaining (4%)
By Risk Severity
Critical
~790K
High
~2.5M
Medium
~3.3M
From Triage to Coverage: Pre-Mondoo, this team couldn't close the gap on criticals alone; highs and mediums went unaddressed. Within 12 months, they were remediating across all three severity levels without adding headcount.
Remediation Progress
Closing the gap
Fix Velocity
How fast vulnerabilities are being resolved.
Same 4-Person Team, 700x Throughput
MTTR pre-Mondoo: 107 days (flat)
107d→68dBU1→35dBU2→5dall BUs
Weekly Rate
~135K
↑ 700x vs. ~200/week pre-Mondoo
MTTR
5 days
↓ 95% (was 107 days) vs pre-Mondoo
Fix Velocity
30-day rolling average.
Security Controls
How continuous monitoring maps to security framework maturity.
Controls Assessment
CIS Critical Security Controls™ v8 maturity: where the organization meets target and where gaps remain.
Progress
CIS Critical Security Controls™ v8
Most of our security controls meet target. What remains open: resilience testing and access monitoring, the areas auditors probe deepest. Closing both eliminates our exposure to audit findings before the next review cycle. Learn more
3/5
Domains Meeting Target
Up from 0/5 in Q4 2025
Resilience & DR furthest from target
4
Critical Gaps (Maturity ≤ 2)
Down from 4 in Q4 2025
Resilience + access monitoring gaps
22
Safeguards Tracked
Full CIS 1-18 evidence mapping
Executive Summary
Aggregate risk view for board and C-suite reporting.
Executive Scorecard
Risk posture by business unit: SLA compliance across divisions.
Risk Score
99/100
Target: 15 by Q4 2026
Controls Maturity76%+8%
Fix Velocity83%+10%
SLA89%+5%
MTTR5d-23d
Business RiskModerate+6 pts
Key Talking Points
Extend Automated Playbooks to Remote Sites as Ransomware Surges 49%
$7.4M avg breach cost (IBM/Ponemon Cost of a Data Breach, 2025)
4 of 5 BUs under 14-day critical SLA; Remote Offices at 18d needs playbook extension
Board ask: Approve Phase 2 automation rollout ($120–200K) extending playbooks to remaining remote sites by Q3
SLA by Business Unit
Business Unit
MTTR
Open
Crit
Status
Corporate IT
3d
42
1
✓ On track
R&D Labs
5d
67
3
✓ On track
Cloud Infrastructure
6d
78
3
✓ On track
Field Service
8d
89
5
✓ On track
Remote Offices
18d
156
8
✗ Overdue
Critical SLA
86%
1.8x faster than industry peer group
High SLA
79%
Exceeds HIPAA §164.308 remediation expectations
Corventra’s Transformation
12,400 assets secured by 4 engineers
92 critical
Pre · 107d
62 medium
Q2 '25 · 68d
32 low
Q4 '25 · 12d
21 low
Q1 '26 · 5d
15 low
Target · 3d
MONDOO SERVICE IMPACT
SANS VMMM maturity across 5 dimensions
Annual Savings
$1.2M
in labor costs
54hrs
Weekly Labor Reduction
62 hrs/wk → 8 hrs/wk
180days
Critical Backlog Cleared
~790K criticals, zero remaining
77%
Risk Reduction
Risk score 92 → 21
See it on your infrastructure.
Every number in this report came from one real environment. Find out what yours looks like.
