Chapter 7

Execution, Reporting, and Analysis

What should be obvious by now is that the vulnerability management (VM) process and technology cannot be managed without accurate and actionable information. By the end of this chapter, you should be able to decide what kinds of reports you will need for your organization. You should also be able to specify the contents and format of the reports to make your processes more efficient. In the previous chapter, we discussed process. These processes must be supported and monitored with actionable information as input. When a manager responsible for VM needs to determine the most important areas of the IT infrastructure to remediate, the information must be readily available. The engineer ...

Get Vulnerability Management, 2nd Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.