Implementing Vulnerability Scanning in a Large Organization

This paper describes how the security group in our organization uses Vulnerability Scanning to demonstrably improve our security posture. This covers the reasons and requirements for scanning, how this fits with our current business structure and how we used a web interface to distribute the collected data to our system custodians. Also covered are our techniques for dealing with false-positives, an explanation of the chosen solution and how the system was tailored to operate from an enduser perspective. Finally, we discuss the impact that the system has had on our organization.

Tags:

Read the complete paper at SANS