Streamlining MSP Operations with CYRISMA’s Centralized Vulnerability Manager (CVM)
CYRISMA’s Centralized Vulnerability Manager (CVM) is designed to give MSPs a single pane of glass to monitor, prioritize, and remediate vulnerabilities across all clients. By aggregating data from every customer environment, CVM helps you cut manual effort, respond faster, and give time back to your team—so you can focus on higher-value activities.
Written by Liam Downward
Updated at April 17th, 2025
- User Manual
- Self Onboarding Guide
- Agents
- The Cyber Risk Assessment Process
- PSA Integrations
- General Questions and Troubleshooting
- The Cyber Risk Assessment Process (Video Tutorials)
- Sales and Prospecting Articles
- CYRISMA Partner Portal Access
- Glossary
- API Documents
- CYRISMA Change Log
- Support Ticket SLA
- Billing Questions
Table of Contents
1. Start with Centralized Visibility
Access All Clients in One Place:
Log into the MSP interface to see vulnerabilities and risk across every client and endpoint from one dashboard.
Aggregate and Filter Data:
Instantly search by vulnerability, root cause, OS, client, or asset type (workstations, servers, etc.). No more jumping between instances.
Tips:
- Use CVM’s search and filter to instantly find high-risk vulnerabilities across all clients or target specific platforms.
- Use workstation (
_ws) or server (_srv) tags to filter results instantly.
2. Accelerate Remediation with Bulk Actions
Centralized Patching:
Identify patchable vulnerabilities (including 3rd-party apps like Zoom) across multiple customers. Schedule or trigger patches for all affected endpoints in just a few clicks.
Filter and Select:
Easily filter by severity, exploitability, asset type, or client. Focus on critical vulnerabilities and patch them at scale.
Patch Management:
Review patch history, see successful/failed actions, and delete or adjust scheduled patches—all from one screen.
Pro Tip: Use blackout hours, patch exclusions, for granular control without disrupting clients’ operations.
3. Automate Onboarding and Scanning
Auto-Provision Agents:
Deploy agents with auto-provision enabled to onboard endpoints automatically—ideal for fast rollouts or bulk deployments.
Please see Install Script with Auto Provisioning Option
Default Vulnerability Scans:
Provisioned endpoints are auto-assigned to scheduled scans (e.g., every Monday at 9am), so new devices are always included in your risk posture—no manual setup needed.
Please see more information here about the default scans
Continuous Scanning:
Set scans to run continuously (daily or weekly, with no end date) to ensure ongoing compliance and eliminate lapses.
4. Integrate with PSA and RMM Tools
Ticket Creation:
Export filtered vulnerability lists directly to your PSA (e.g., ConnectWise, AutoTask, Kaseya, Datto, Synchro) and generate actionable tickets for engineering teams.
Please see our KB category to see our different PSA integrations
Custom Profiles:
Use CVM’s integration settings to map vulnerabilities to the correct customer and streamline your internal workflows.
5. Improve Data Hygiene and Agent Management
Mass Delete Inactive Agents:
Use CVM’s agent management tools to bulk remove inactive endpoints, keeping your environment and reporting clean.
Automated Cleanup:
Agents not seen for a set period are flagged for removal, further reducing manual overhead.
6. Leverage Productivity Features
Third-Party Auto-Patching:
Enable auto-patching to automatically remediate third-party vulnerabilities soon after discovery. Adjust settings for blackout hours or application-specific exceptions.
Please see here to activate auto patching in your instances
Enhanced Reporting & Dark Web Monitoring:
Generate comprehensive reports, track risk trends, and monitor dark web exposures—all centrally.
Key Takeaways
Save hours of manual effort with a unified dashboard for vulnerability and patch management.
Automate agent deployment and scanning for faster onboarding.
Streamline ticketing, remediation, and reporting with integrations and bulk actions.
Get more billable hours back by eliminating repetitive, manual processes.