Chapter 12

Risk and Vulnerability Management

This chapter covers the following topics:

  • The Vocabulary of Risk: This section discusses risk and its three prerequisites: assets, threats, and vulnerabilities.

  • Vulnerabilities: This section discusses vulnerabilities, vulnerability management, and scanning.

  • Risk: This section discusses risk prioritization, management, and response.

For cybersecurity professionals, it can be easy to see security as an end unto itself. Our infrastructure must be secure. When a major attack occurs, anyone who pushed back will rue the day they didn’t heed our warning! But cybersecurity doesn’t exist for its own sake: It serves to reduce organizational risk. Understanding risk, its components, and its management is crucial ...

Get Cisco Certified Support Technician (CCST) Cybersecurity 100-160 Official Cert Guide now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.