Assessing the efficiency and effectiveness of security controls in place. Evaluate and manage risk.
Vulnerability management is a set of processes and technologies that establishes and maintains a security configuration baseline to discover, prioritize and mitigate exposures.
Effectively managing vulnerabilities is really about patching, updating software, hardening configurations and implementing technical policies on IT assets.
Organizations do vulnerability management to:
The penetration testing practice is used to find vulnerabilities that an attacker could exploit testing a computer system, network or Web Application.