Cygilant Blog

You Have a Vulnerability Scanner. Now What?

Posted by Trevan Marden on Mar 30, 2018

One of the best ways to reduce risk quickly is to identify and remediate vulnerabilities across your network devices. And a vulnerability scanner can be a terrific way to seek out vulnerabilities lurking in your infrastructure. But how do you create a plan to scan your network devices regularly as new vulnerabilities continue to emerge, and what do you do with the scan results? A vulnerability scanner can be a great tool when you take the time to use it to its fullest. But all too often this type of software goes unused or underused because time isn’t easy to come by in most security organizations. 

Simply purchasing a point product is not enough to see the benefits. You need to develop a plan for regular scanning, along with how you will prioritize vulnerabilities based on the potential impact to your organization, locate remediation information, test and deploy the fixes, then scan again to ensure the fixes you implemented properly addressed the vulnerability. You also want to document the changes made and your progress in improving your security posture. This is not an easy process and can take a lot of time and energy if done manually.

At Cygilant, we provide vulnerability management as a service. Our 24x7 Global SOC team works as an extension of your team to install and manage vulnerability scanning technology. If you already have a scanner like Rapid7, Tenable or Qualys, we can co-manage your existing scanner.  We schedule scans and provide the results, along with a unique scoring system to help you prioritize based on risk to your organization.  We also provide remediation guidance on how to address the vulnerability. With our integrated patch management service, we can also easily provide information on available patches to address vulnerabilities, along with an auditable change management process to handle review and automate the deployment of the patches. We can provide reports to help meet compliance requirements and demonstrate measurable improvements in your organization’s security posture.

If you are like many of our customers, you recognize the importance of finding and addressing vulnerabilities in your network quickly before hackers exploit them, but you also struggle to find the necessary time to handle these tasks manually. Instead, consider gaining an extension of your IT team with Cygilant’s round-the-clock global SOC team to do the heavy lifting for you and help you focus your efforts. Learn more about our SOCVue Unified Vulnerability and Patch Management service in this brief video:

Watch Video

Tags: Patch Management

Most Recent Posts

Subscribe to the Cygilant Newsletter