Please enable JavaScript.
Coggle requires JavaScript to display documents.
VULNERABILITY MANAGEMENT (2. Vulnerability Management Lifecycle (Threats,…
VULNERABILITY MANAGEMENT
1. What is Vulnerability Management ?
Assessment
Analysis
A process to determine whether to eliminate, mitigate or tolerate vulnerabilities based upon risk and the cost associated with fixing the vulnerability.
Remediation
2. Vulnerability Management Lifecycle
Threats
Risk
Vulnerabilities
Remediation
Priorities
Measure
Inventory
Compliance
Policy
3. Important of Vulnerability Management
Determine Risk Level
Determine risk level = A x V x T
Correlation Threats
View potential threat
Remediation
Proactively fix vulnerabilities
Measure
Measure impact of security decision and actions
Prioritize Asset
Assign business value to assets
4. Vulnerability Scanning
Benefits
Very good at checking for hundreds (or thousands) of potential problems quickly
May catch mistakes/oversights by the system or network administrator
Defense in depth
Drawbacks
Can cause complacency
Can cause self-inflicted wounds
Cannot match the skill of a talented attacker
Types
Network vulnerabilities
Host-based (OS) vulnerabilities
Tools
Port scanner (Nmap, Nessus)
Network vulnerability scanner (BoomScan)
Database Security Scanner
Definition
Automated tools that scan hosts and networks for known vulnerabilities and weaknesses