Vulnerability Assessments, Scanning & Management

PsyberCann's Vulnerability scanning and automated continuous monitoring help fill the gap in between manual penetration tests.  Vulnerability management helps you comply with data protection mandates in regulations such as the GDPR, HIPAA and PCI DSS and avoid the significant impact of penalties and damage to your reputation.

Now more than ever, cyber attackers are constantly looking for vulnerabilities they can exploit in a company’s network. So having a vulnerability management solution in place is critical.  

Vulnerability assessments are important because they provide you with information about the security weaknesses in your environment and provide direction on how to remediate or mitigate the issues before they can be exploited.

We conduct several types of vulnerability assessments including:

• Network-based assessment: Used to identify possible network security issues and can detect vulnerable systems on wired and wireless networks. 
• Host-based assessment: Used to locate and identify vulnerabilities in servers, workstations, and other network hosts. These scans typically examines open ports and services and can offer visibility into the configuration settings and patch management of scanned systems.
• Wireless network assessment: Used to scan Wi-Fi networks and attack pathways, or vectors, in the wireless network infrastructure. It can validate your company's network is securely configured to prevent unauthorized access and can also identify rogue access points.
• Application assessment: The identification of security vulnerabilities in web applications and their source code by using automated vulnerability scanning tools on the front-end or static/dynamic analysis of source code.
• Database assessment: The assessment of databases or big data systems for vulnerabilities and misconfiguration, identifying rogue databases or insecure dev/test environments, and classifying sensitive data to improve data security.

A vulnerability management program is far more than just a vulnerability assessment, vulnerability scanner, or patch management. The best vulnerability management solutions use an ongoing process that regularly identifies, evaluates, reports and prioritizes vulnerabilities in network systems and software. Our security vulnerability process consists of five steps:

1. Vulnerability identification: Analyzing network scans, pen test results, firewall logs, and vulnerability scan results to find anomalies that suggest a threat or cyber attack could take advantage of a vulnerability. 
2. Vulnerability analysis: Decide whether the identified vulnerability could be exploited and classify the severity of the vulnerability in order to understand the level of security risk.
3. Risk assessment: Assess which vulnerabilities will be mitigated or remediated and in which order based on their potential as a threat and other risks. 
4. Remediation: Resolve any vulnerabilities by updating affected software and/or hardware.
5. Mitigation: Decide on countermeasures and how to measure their effectiveness in the event that a patch is not available.

The vulnerability assessment process is a critical component of vulnerability management and IT risk management lifecycles and must be done on a regular basis tin order to maintain effectiveness.