Controls

Terug naar overzicht
Version

SB.18.004 Automated Application Vulnerability Scanning

Medium
Medium
Medium
System Owner
v2.0 (Q1 2024)
Vulnerability Management

Description

The (web-)application is subject to automated vulnerability scanning at least once per quarter.

Scanning occurs authenticated as much as possible.

Specification

Use authenticated scanning. Report findings with a ratings such as Low/Medium/High to help prioritize.

Use a special account and systems for performing security checks that can easily be distinguished in the monitoring.