What are the best vulnerability scanning tools? Why?

229 viewscircle icon2 Comments
Sort by:
CIO in Educationa year ago

The best vulnerability scanning tools are the ones that organisations actively use to improve the security of their environments. What I mean by this is that not only are scans configured to run at a regular cadence, but that the results are being analysed and remediation efforts are put in place. I've seen regular instances of organisations running vulnerability assessments as a compliance checklist item, but rarely interacting with the findings to make security posture improvements. 

The scanning tool you choose will often be based on your org's appetite for a few things: (not an exhaustive list)
- budget (agent-based VAS is more expensive)
- IT overhead ("do I really need to install yet another agent?")
- does your organisation have automation to, for example, automatically log your VAS calls and have them assigned to a team for remediation? (logging VAS calls manually is extremely time-consuming and emailing scan results to engineers individually isn't effective)
- is someone taking responsibility for remediating underlying reasons for the prevalence of vulnerabilities in their organisation's environment? e.g. if the vulnerabilities point to poor patching cadence, has a proper patching programme been implemented so that VAS isn't being relied on to point out vulnerable applications/operating systems etc. 

Head of Cyber Security in Manufacturinga year ago

Please detail out the question, so its clear what the focus is for example:
- Endpoints
- Servers 
- Webservers
- Databases
- Applications
- Running Kubernets
- Third Party Libraries
- etc

Content you might like

For those with organizations that have developed minimally viable system (MVS) resilience strategies in association with business impact input and business continuity, what sources has helped you get started on aligning those discussions with your non-IT business partners?

Read More Comments

At your organization, how much regression testing for new app features is done manually vs. how much is automated?

We are not doing regression testing12%

25% manual, 75% automated48%

50% manual, 50% automated28%

100% manual, 0% automated8%

Don't know2%

View Results

Has anyone drafted an SOW for a cloud-based SIEM with setup, migration, and maintenance? I’m working on a FedRAMP-authorized SIEM SOW, migrating from on-prem Splunk, covering data, searches, alerts, dashboards, and models.  Scope includes Environment Setup:  Cloud provisioning, configuration, testing. Connectors/Parsers: Custom data source integration. Content Development: Rules, use cases, threat feeds. Performance Tuning: Query/index optimization. Runbooks: Operational procedures. Also required: 24x7 support, maintenance, lifecycle and application management, role-based training, and documentation.  Must comply with NIST SP 800-53, CJIS, and FedRAMP Moderate+. Goal: Secure, scalable SIEM for rapid deployment. I may be missing elements, so suggestions are welcome. Please share redacted SOWs or tips if possible.

Will the pressure from recent major ransomware attacks add to employee burnout in an industry that already faces a talent shortage?

Yes65%

No24%

Unsure10%

View Results

Could anyone share practical experiences or lessons learned about implementing the LGPD (General Data Protection Law) in public or private institutions in Brazil?