Enhance cybersecurity awareness and survivability for DoD, industry partners, and academia in the face of the ever-increasing threat of cyber attacks. Cybersecurity (CS) includes managing risks related to the use, processing, storage, and transmission of information and the systems and processes used for those purposes, including analog and physical form. CS includes information availability, identification and authentication, confidentiality, integrity, and non-repudiation as well as the economic considerations with respect to selection of CS techniques, CS processes, and industry trends.
Vulnerability Management
This topic contains 1 reply, has 1 voice, and was last updated by 
-
Topic
-
Where do network discovery and vulnerability fit in terms of priority in a security program? I know every organization is going to be different but isn’t this something that should be happening no matter what? I talk with a lot of organizations who have no vulnerability management processes in place, yet they are all interested in cybersecurity. I would love to hear from some of the more seasoned InfoSec and Cyber risk management professionals on this.
-
Replies
-
Doing a little market research here…
1) Are network discovery and vulnerability management a high priority within your cyber risk management program?
2) If so, at what point (either size of the company in employees or revenue) did it become a priority?
3) Also, is the main driver regulation (HIPPA, PCI-DSS, etc) or something else?
4) How frequently do you scan assets for vulnerabilities?
5) Do you perform authenticated scans?
6) What do you pay for network discovery and vulnerability management?
You must be logged in to reply to this topic.
