Abstract

One of the most underestimated factors in providing cybersecurity for corporational networks is the time factor corresponding to vulnerability and patch management. The time gap between public announcement of vulnerability and its detection, and reporting to interested stakeholders is the key to successful prevention of vulnerability exploitation by adversaries. Sometimes the time that passes since vulnerability scan is performed and time the report is received can extend to a month. Such delay may be a cause of significant risk or even damage done to the network by adversaries. To date organisations rely on log correlation in terms of introducing defenses. However, the accelerative vulnerability management, many different risks can be avoided completely. This work introduces a flexible system that collects information about all known vulnerabilities, gathers data from organizational inventory database, integrates with vulnerability scanners to retrieve scan results. Adopted approach results can be presented almost in real time to all interested stakeholders and thus help them react or plan actions promptly without unnecessary delay thus improving the Quatlity of Service.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.