CompTIA Cybersecurity Analyst (CySA+) CS0-002 Cert Guide, 2nd Edition

Chapter 3

Vulnerability Management Activities

This chapter covers the following topics related to Objective 1.3 (Given a scenario, perform vulnerability management activities) of the CompTIA Cybersecurity Analyst (CySA+) CS0-002 certification exam:

Vulnerability identification: Explores asset criticality, active vs. passive scanning, and mapping/enumeration.
Validation: Covers true positive, false positive, true negative, and false negative alerts.
Remediation/mitigation: Describes configuration baseline, patching, hardening, compensating controls, risk acceptance, and verification of mitigation.
Scanning parameters and criteria: Explains risks associated with scanning activities, vulnerability feed, scope, credentialed vs. non-credentialed ...

Get CompTIA Cybersecurity Analyst (CySA+) CS0-002 Cert Guide, 2nd Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

CompTIA Cybersecurity Analyst (CySA+) CS0-002 Cert Guide, 2nd Edition by Troy McMillan

Chapter 3

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly