According to Gartner, “Vulnerability Management is a process that can be implemented to make IT environments more secure and to improve an organization's regulatory compliance posture”.

Patch management and vulnerability management are probably the most symbiotic of all IT management processes because both processes have been designed to proactively prevent the exploitation of IT vulnerabilities that could exist within an organisation. According to NIST, the expected result is to reduce the time and money spent dealing with vulnerabilities and exploitation of those vulnerabilities.

To address and respond to threats that continuously target information system infrastructures, it is important to invest in solid and methodical vulnerability management strategies.

SensePost has over the last 8 years developed a unique approach to vulnerability management that combines aggressive, detailed analysis with continuous, repetitive vulnerability scans. This approach has numerous advantages, not least of which is the detection of new threats that arise when client configurations change or when new vulnerabilities are discovered.

Our Vulnerability Management services comprise of four complimentary components:

• HackRack offers PCI-compliant Vulnerability Scanning over the Internet using a SaaS approach.
• BroadView provides comprehensive Vulnerability Scanning for Internet and Intranet environments as a Managed Service.
• AVA allows spot-checks to be performed at the infrastructure- and application-layer.
• Footprints present the customer with a detailed analysis of their visibility from an Internet perspective.