Vulnerability management is the capability of an organization to effectively identify, report, and reduce weaknesses in the organization. In this chapter, we will be discussing how vulnerability management information provides meaningful information to stakeholders.
In this chapter, we will cover the following topics:
- Overview of vulnerability management capabilities
- Common vulnerability scoring system
- Capability Maturity Model: vulnerability management – scanning
- Capability Maturity Model: vulnerability management – reporting
- Capability Maturity Model: vulnerability management – fix