Vulnerability Management
Vulnerability Management involves:
- Tracking inventory / categorizing assets
- Performing a vulnerability assessment
- Classifying risks to those vulnerabilities
- Applying patches / updating software
Most vulnerability assessments assign a risk-level to each cyber threat. These risks can have a priority, urgency, and impact assigned to them, which helps to channel focus on those cyber threats that could create the most impactful issues for an organization.
The most vital part of vulnerability assessment is a vulnerability scanning tool. This tool can be used to execute various types of scans, such as:
- External vulnerability scans
- Internal vulnerability scans
Digitization and the ever-expanding enterprise have changed the security landscape. The classic, contained enterprise no longer exists. The tools and approaches organizations used in the old world of client/server, on premise data centers whose boundaries often consisted primarily of desktop PCs or servers, no longer work. As the boundaries of the traditional workforce expand, and organizations adopt cloud computing services and an increasingly mobile workforce, the lack of visibility into IT environments becomes a major challenge.
Previously we had to make a choice between authenticated assessments or unauthenticated assessments. With an unauthenticated assessment, we would have placed a scanner on your network and scan each device as an attacker would, only seeing what was exposed on the internal network. With an authenticated assessment, we would have placed a scanner on your network and then would have requested login information for each device on your network. This way the scanner could 'log in' to your devices and review the software that is installed, even if it is not exposed to the network. The reason for this is to discover any software that could be vulnerable to an attacker if your device did connect to an attacker-controlled device unknowingly.
Agents help to address the challenge that you may face when dealing with the management of credentials on target hosts and asset availability. In some organizations, obtaining and managing credentials can cause considerable problems. Agents solve this problem because after the agents are initially installed they no longer require host credentials to run future scans, even if the credentials change.
What Tools do we use to perform assessments?
Tenable Nessus®
Tenable Nessus® Agents
Tenable Nessus® Agents
Tenable Nessus® is No. 1 in vulnerability assessment. The solution's accuracy and level of coverage notably outpaces competing tools and has the fewest instances of false positives. This is a major advantage for you our client. Additionally, the Tenable Research team which works relentlessly to develop plugins that address the newest vulnerabilities and threats. When high-profile threats emerge, Tenable Research releases coverage within 24 hours.
Tenable Nessus® Agents
Tenable Nessus® Agents
Tenable Nessus® Agents
Tenable offers Nessus® Agents to meet the challenges that we face in today’s modern age of cloud computing and mobility. Nessus Agents extend scan coverage and provide visibility into hard to scan assets- like endpoints and other remote assets that intermittently connect to the internet. When combined with traditional scanning from Nessus you get a unified view of your security and compliance data across all IT assets, giving you instant visibility into vulnerabilities and where to focus.