Controls

Terug naar overzicht
Version

SB.18.003 Automated Vulnerability Scanning

Medium
Medium
Medium
Organisation
v2.0 (Q1 2024)
Vulnerability Management

Description

Network connected IT systems are subjected to automatic vulnerability scanning at least once per month.

Scanning occurs authenticated where possible.

Specification

Use authenticated scanning. Report findings with a ratings such as Low/Medium/High to help prioritize.

Use a special account and systems for performing security checks that can easily be distinguished in the monitoring.