Chapter 2.2

Tier 2—Vulnerability Management

Abstract

Information security systems have vulnerabilities; there is no way to prevent that. It is, however, possible to minimize the scope of the impact of the vulnerabilities. As a vulnerability manager, one evaluates the current state of vulnerabilities, potential mitigations, and the potential impact upon an organization as they are discovered or new information about vulnerabilities becomes available. The research done as part of vulnerability management provides an individual with a wide range of skills that can be leveraged to move into other roles should one want to.

Keywords

vulnerability manager
information security
careers
security assessment

Introduction

“vulnerabilities arise at the boundary ...

Get Breaking into Information Security now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.