Vulnerability Management 101
Managing vulnerabilities in a company network is an endless task that is compounded by the limited manpower that many companies experience as a result of the cyber security skills shortage. It’s almost impossible to fix every single vulnerability there is, but these tips will help keep the more susceptible vulnerabilities at bay:
- Regular updates
Make sure that your workstation and server software is up-to-date at all times. Malware thrives on exploiting vulnerabilities that have not been picked up yet. Patching all outdated software reduces the attack surface and lessens the chances of your network being hacked.
- Identify your assets
You cannot protect something if you do not know it is there. Taking a regular inventory of your assets such as your devices, services and open ports will give you some clarity on your network and help you to know just what to prepare for. Vulnerability scanning should also be done on a regular basis as new vulnerabilities are found and reported every day and frequent scans are needed to stay on top of the threat landscape.
- Document results
Keep track of the scan results and the changes that have been made. This will set a precedence that can be followed when you need to review what was done previously. The precedence will also allow for future planning to protect your network against these threats.
The size of your company does not necessarily determine your network’s security risks. A vulnerability that exists and can be exploited has the potential to put everyone at risk. Similarly, a system of regular inventory scanning and continuous attack surface assessment will help you stay on top of vulnerabilities. Managing the safety of your network should be one of your top priorities and these tips should assist with maintaining an operational network.
