Thursday, March 9, 2017

Word of the Day: vulnerability management

Word of the Day WhatIs.com
Daily updates on the latest technology terms |March 9, 2017
vulnerability management

Vulnerability management is a pro-active approach to managing network security by reducing the likelihood that flaws in code or design could compromise the security of an endpoint or network.

A vulnerability, also known as a security hole, is a weak point that an intruder could exploit to gain access to system resources for data theft or malicious purposes. The essential elements of vulnerability management include detection, assessment and remediation.

Vulnerability management processes include:

Checking for vulnerabilities - This process should include regular network scanning, firewall logging, penetration testing or use of an automated tool like a vulnerability scanner.

Identifying vulnerabilities - This involves analyzing network scans and pen test results, firewall logs or vulnerability scan results to find anomalies that suggest a malware attack or other malicious event has taken advantage of a security vulnerability, or could do so.

Verifying vulnerabilities - This process includes ascertaining whether the identified vulnerabilities could be exploited on servers, applications, networks or other systems. This also includes classifying the severity of a vulnerability and the level of risk it presents to the organization.

Mitigating vulnerabilities - This is the process of figuring out how to prevent vulnerabilities from being exploited before a patch is available, or if there is no patch. It can involve taking the affected part of the system off-line (if it's non-critical), or various other workarounds.

Patching vulnerabilities - This is the process of getting patches -- usually from the vendors of the affected software or hardware -- and applying them to all the affected areas in a timely way. This is sometimes an automated process, done with patch management tools. This step also includes patch testing.

Because the nature of threats is constantly evolving, vulnerability management planning strategies must frequently be updated to ensure they remain effective in a changing threat landscape. An important feature of vulnerability management tools is automated trouble ticket and workflow creation, which ensure appropriate personnel is notified of critical vulnerabilities.

Quote of the Day

"Organizations tackle the most severe vulnerabilities first and work their way down to the least severe as time and resources permit. Some vulnerabilities don't pose a serious threat to the organization and may simply be accepted, which means they are not remediated." - Ed Tittel

 

Trending Terms

vulnerability management planning
firewall
vulnerability analysis
Common Vulnerability Scoring System
penetration testing

vulnerability scanner

vulnerability disclosure

hardware vulnerability

zero-day vulnerability

 
Learning Center

Introduction to vulnerability management tools
Vulnerability management tools can be an invaluable asset for enterprises. Here's how vulnerability management software works to close security gaps.

Comparing the top vulnerability management tools
Expert Ed Tittel explores and discusses critical features of the top vulnerability management tools on the market.

Pentagon hack possible due to bad vulnerability management
A Pentagon hack may have already occurred because of flaws in DOD systems that have been unpatched for at least eight months.

Seven criteria for buying vulnerability management tools
Expert contributor Ed Tittel describes key purchasing criteria for vulnerability management tools for all types and sizes of organizations.

Best practices for an information security assessment
An information security assessment is a good way to measure the security risk present in your organization. Find out how to yield effective results.

Writing for Business

The number of security holes found during the penetration test left _________ shaken.
A. the CSO and me
B. the CSO and I
C. the CSO and myself

Answer

 

 

 

Stay In Touch
For feedback about any of our definitions or to suggest a new definition, please contact me at: mrouse@techtarget.com

 

Visit the Word of the Day Archives and catch up on what you've missed!

 

FOLLOW US

TwitterRSS
About This E-Newsletter
This e-newsletter is published by the TechTarget network. To unsubscribe from Whatis.com, click here. Please note, this will not affect any other subscriptions you have signed up for.
TechTarget

TechTarget, Whatis, 275 Grove Street, Newton, MA 02466. Contact: webmaster@techtarget.com

Copyright 2016 TechTarget. All rights reserved.

No comments: