9
2
th e Vu l n e r a b I l I t y ex p e r I e n c e
2.1 Introduction
Vulnerability management (VM) is a subject that fits nicely into all of
the other management disciplines found in frameworks such as infra-
structure library (ITIL), ISO 17799, and ISO 27001. ese disciplines
are generally created for the purpose of dealing with the persistent
industrial stream of some phenomena that is a direct consequence of
business activities. Taking the ITIL framework as an example, inci-
dent management, a set of processes supported by people and technol-
ogy, addresses faults in IT infrastructure. ose faults are not part of
the normal operation of the infrastructure and underlying services.
Similarly, VM pertains to managing the vulnerabilities resul