Practical Vulnerability Management

Magnusson, Andrew

  • 出版商: No Starch Press
  • 出版日期: 2020-10-06
  • 售價: $990
  • 貴賓價: 9.5$941
  • 語言: 英文
  • 頁數: 270
  • 裝訂: Quality Paper - also called trade paper
  • ISBN: 1593279884
  • ISBN-13: 9781593279882




A hands-on guide to improving an organization's computer security and developing scanning tools on a budget.

Practical Vulnerability Management discusses the components of a vulnerability management program and shows the reader how to build a free or low-cost system to automatically handle the repetitive aspects of vulnerability management. Vulnerability management is a critical and sometimes neglected aspect of information security. It consists of two main parts: awareness and action. First, the security practitioner must be aware of the vulnerabilities that exist in an organization's systems and understand how dangerous each one is. Second, that information must feed into an ongoing process of addressing vulnerabilities by updating the vulnerable systems or otherwise mitigating their severity.


Andrew Magnusson has been working in the information security field since 2002, in areas ranging from firewall configuration to security consulting to managing SOC2 compliance. As a consultant deploying enterprise vulnerability management tools he has seen how an organization's vulnerability management practices, or lack thereof, affects their overall information security posture.