// THREAT DETECTION AND DATA PRIVACY TERM

Vulnerability Management

Vulnerability Management is the ongoing process of identifying, assessing, reporting, and remediating security weaknesses in an organization's systems and applications to reduce their attack surface. It's like regularly checking your house for broken locks or windows and fixing them to prevent burglaries.

TECHNICAL DEFINITION

Vulnerability Management is a continuous, cyclical cybersecurity process for proactively identifying, evaluating, prioritizing, remediating, and mitigating security vulnerabilities across an organization's IT infrastructure, including systems, applications, and networks, to reduce risk and enhance the overall security posture.

BACKGROUND

In computer security, a vulnerability is a flaw or weakness in a system's design, implementation, or management that can be exploited by a malicious actor to compromise its security.

READ MORE ON WIKIPEDIA

SYNONYMS & ALIASES

  • Vuln Management
  • Vulnerability Remediation
  • Security Patching
  • Risk Management (partial)
  • Threat Management

USAGE NOTE

This practice is crucial in cybersecurity to maintain a strong defensive posture against evolving threats, often involving specialized scanning tools and a structured remediation workflow.

DEVELOPERS

Organizations developing technology related to Vulnerability Management.

  • Tenable

    Develops and provides vulnerability management solutions, including Nessus (a widely used vulnerability scanner) and Tenable.io, which offers continuous visibility and assessment of cyber exposure across various assets.

  • Qualys

    Offers a cloud-based platform for vulnerability management, compliance, and web application security, providing continuous visibility into IT assets and their security posture.

  • Rapid7

    Provides the InsightVM platform, a comprehensive vulnerability management solution that offers continuous assessment, prioritization, and remediation guidance for vulnerabilities across an organization's attack surface.

  • ServiceNow

    Through its Security Operations product suite, ServiceNow offers a Vulnerability Response module that automates the prioritization and remediation of vulnerabilities by integrating with existing security tools and workflows.

  • Microsoft

    Develops Microsoft Defender Vulnerability Management, an integral part of Microsoft Defender for Endpoint, offering continuous vulnerability discovery, prioritization, and remediation recommendations across devices.

  • Vulcan Cyber

    Specializes in vulnerability remediation orchestration, providing a platform that aggregates vulnerability data, prioritizes risks, and streamlines remediation workflows across security and IT teams.

  • Greenbone Networks

    The company behind Greenbone Enterprise Appliance and the commercial development of OpenVAS (Open Vulnerability Assessment System), offering comprehensive vulnerability scanning and management solutions.

  • Ivanti

    Offers Ivanti Neurons for Risk-Based Vulnerability Management (RBVM), a solution designed to identify, prioritize, and remediate vulnerabilities based on their exploitability and impact, integrating insights from its acquisition of RiskSense.

RELATED TERMS IN DEFENSE & ARCHITECTURE