Delivering Real-Time Feedback with Bitsight Groma: Dynamic Remediation Now Fully Live

Tags:

Final dynamic remediation completion blog
Sofia Lourenço
Written by Sofia Lourenço
Staff Product Manager, SPM
Arzu Ozbek Akay
Written by Arzu Ozbek Akay
Staff Product Manager
Monica Vale profile image
Written by Mónica Vale
Senior Product Manager

In December 2024, we announced Dynamic Remediation, an initiative that accelerates the feedback of customers' remediation efforts. The goal was simple but ambitious: reduce the time between a remediation and seeing that improvement reflected in Bitsight Security Ratings.

This initiative was built in response to direct customer input. You asked for faster validation of your remediation, more transparency, and credit when vulnerable assets were remediated or taken offline.

Powered by the internet scanner Bitsight Groma, Dynamic Remediation was introduced in phases to ensure smooth adoption and measurable impact. Now, it's fully live—providing near-instant feedback and helping organizations act faster and prove progress sooner.

Key takeaways

  • Rescan results now update within minutes—no more waiting 72 hours to see progress.
  • Full delivery across five risk vectors: SSL Configurations, SSL Certificates, Open Ports (TCP), Server Software, and Web Application Security are now covered.
  • Improved UX: A new “Rescan Status” and updated UI help you track progress with clarity.
  • Customer-validated impact: Security leaders report faster issue resolution and reduced reliance on third-party verification tools.
  • Further roadmap for Bitsight Groma includes broader coverage, automated asset updates, and deeper visibility into vulnerabilities.

What we delivered

With the final phase of Dynamic Remediation now live, customers can benefit from immediate rescan feedback. Rescan results appear within minutes, with rating updates reflected the very next day.

Full-visibility-into-finding-details,-filtered-by-rescan-status (1)
Instant remediation validation and next day rating updates that speed up the rating impact. Full visibility into finding details, filtered by rescan status.

Organizations also receive automated rating credit for assets that have been taken offline, SSL certificates that are no longer active, and web applications or servers that have been remediated or decommissioned.

Coverage has been expanded to include several key risk vectors. These include SSL Configurations, SSL Certificates, Open Ports (TCP), Web Application Security, and—where detection allows—Server Software.

We’ve also introduced new platform features to make the experience even more intuitive. These include a clearer “Rescan Status” indicator, an enhanced “Finding History” tab that shows a full timeline of activity, and a unified filter set that simplifies rescan tracking.

A new tab in the Finding Detail Sheet to display the timeline of finding observations and related rescan history
A new tab in the Finding Detail Sheet to display the timeline of finding observations and related rescan history.

How to get the most from Dynamic Remediation

Here’s how customers can make full use of this initiative’s enhancements:

  • Initiate rescans regularly: As soon as remediation steps are completed, initiate a rescan for faster validation and rating impact.
  • Use the new Rescan Status view: Stay updated on where findings stand and understand if further action is needed.
  • Leverage filter sets and history tracking: Filter findings by status and Risk Vector, and use the rescan history to validate the remediated findings with speed.
  • Track progress across assets: Whether you're managing a large digital footprint or a single high-risk domain, Dynamic Remediation scales with you.

 

What else to expect for Bitsight Groma

Bitsight Groma is part of the data engine behind Dynamic Remediation, and its momentum isn’t slowing down. All EASM Enhanced customers now get access to daily scanning. This ensure that they always have the latest view of their attack surface and reduces the dwell time security issues In the months ahead, Bitsight Groma’s continuous coverage expansion will help surfacing new assets, exposures, and vulnerabilities reflected as diligence risk vector findings on the Bitsight product. 

Starting in early 2026, customers can expect improved TLS coverage, ensuring deeper visibility into encryption hygiene across digital environments. At the same time, enhanced  asset discovery will enable faster and more accurate detection of newly registered or reconfigured domains.

The platform will also broaden its reach with IPv6 address expansion and the addition of new vulnerability detections, strengthening Bitsight’s support to risk leaders as the most comprehensive source of external risk intelligence. This means richer data feeding into ratings, reflecting the exposure in the attack surface, and more precise insights for security teams managing large, complex ecosystems.

Groma will continue powering innovation across the Bitsight portfolio, from exposure analytics to 4th party risk and operational technology intelligence. These developments aim to give customers an even more complete view of their attack surface and help prioritize action where it matters most.

What customers are saying about Dynamic Remediation

Customers are already seeing real impact from Dynamic Remediation. With immediate feedback on their remediation efforts, teams are resolving issues faster and with greater confidence. Many have shared that the experience has simplified their workflows, eliminated the need for external verification tools, and made day-to-day tasks noticeably easier. For security leaders managing complex environments, this is a meaningful step forward in proactive risk management.

To see how Bitsight can help you stay ahead of cyber risk, visit our Cyber Risk Intelligence page or request a demo.