Threat Level Scoring
Threat Level Scoring
The Threat Level is a single number (0-100) that represents the overall security posture of your monitored infrastructure. It is the primary metric on the FortWatch dashboard.
How It Is Calculated
The threat level score is a weighted sum of all open issues across your assets:
- Critical issues: 10 points each
- High issues: 4 points each
- Medium issues: 1.5 points each
- Low issues: 0.5 points each
The raw score is capped at 100. A score of 0 means you have no open issues. A score of 100 means you have significant unresolved security concerns.
What the Score Means
- 0-10 — Excellent. Your infrastructure has minimal known issues.
- 11-30 — Good. Some issues exist but nothing critical. Keep addressing them.
- 31-60 — Moderate. There are meaningful security concerns that should be prioritized.
- 61-80 — Poor. Multiple serious vulnerabilities need immediate attention.
- 81-100 — Critical. Your infrastructure has significant exposure. Prioritize critical and high issues immediately.
Reducing Your Threat Level
The fastest way to reduce your threat level is to address issues in order of impact:
- Resolve Critical issues first — Each critical issue resolved drops the score by 10 points.
- Then High issues — Each high issue resolved drops the score by 4 points.
- Then Medium and Low — These contribute less to the score but still matter for overall security hygiene.
Dismissing an issue also removes its weight from the threat level calculation. However, if a dismissal expires, the issue reopens and its weight is added back to the score.
Score Updates
The threat level recalculates automatically whenever:
- A new issue is created from scan results.
- An issue is resolved or dismissed.
- A dismissed issue expires and is reopened.