Vulnerability Assessment (VA) is a necessary part of an effective information security program. VA is the means that the organization’s security status is determined by comparing the actual state of the organization with its desired level of security. VA includes design, development and review of security policies, procedures, and standards, and the validation of the state of security of the information
technology infrastructure.
Professional services are used to design, develop, review, or validate policies and procedures as well as to provide education and training. Software and/or services can determine the vulnerability of networks and hosts.
Did you find this white paper useful?
14 out of 21 users found this white paper useful
Related white papers
Reduce the Risk of Costly Data Breaches: Three Pillars of Data Protection
There are numerous regulations that govern the protection of private, personal and confidential data regardless of whether the data resides on a secure mainframe computer, desktop PC or mobile device...
Attacks and Countermeasures: A Study of Network Attack Classes and Security Components to Protect Against Them
There are many types of network attacks, and security solutions to address almost all of them. Most attack types fall into three major categories: attacks on integrity, attacks on confidentiality...
Security of the WEP Algorithm
The 802.11 standard describes the communication that occurs in wireless local area networks (LANs). The Wired Equivalent Privacy (WEP) algorithm is used to protect wireless communication from eavesdropping. A secondary...
Computer Security Policy: An Introduction to Computer Security
Some organizations issue overall computer security manuals, regulations, handbooks, or similar documents. These may mix policy, guidelines, standards, and procedures, since they are closely linked. While manuals and regulations can...
Gain a clear understanding of your organization's security posture -- then act decisively to improve it
Threats to your organization's IT security occur daily and evolve constantly. In fact, virtually every organization has a "security gap" between its current protection level and the level where it...
Gene Kim Presents "Surviving and Benefiting from an Audit" with Craig Morgan, Partner KPMG
An audit is a necessary and often painful event for many companies. As difficult as it is to imagine, it is possible to benefit from an audit. By understanding the...
Gartner Report: Understanding the Nine Protection Styles of Host-Based Intrusion Prevention
This report by Neil MacDonald takes a look at the technologies available today for intrusion prevention. "The time for a more complete approach to host-based intrusion prevention is here. Traditional...
