Vulnerability management
One figure says it all … More than 90% of the situations, in which systems are compromised, are the result of vulnerabilities and configuration errors.
Both the infrastructure being used by organizations and the attacks they come under have become more complex and sophisticated than ever before. This has made increasingly difficult to address vulnerabilities and weaknesses in an effective and efficient way.
Additionally, the organization's risk exposure may not be recognized or visible to senior management. Firewalls, anti-virus software, intrusion detection and intrusion prevention systems, patch management and periodic vulnerability scanning may be in place, but even these may not be enough to protect your organization against the ever evolving range of threats.
We help clients developing effective and efficient solutions by linking processes, people and technologies to ensure that risks are identified, assessed and managed as part of an operational approach to addressing system vulnerabilities. Our team can assist by:
- Assessing the current state of vulnerability management processes
- Helping you select the right solutions for vulnerability management
- Designing and optimizing vulnerability management processes and controls that include threat identification, risk assessment, remediation and effective management reporting
- Implementing vulnerability management solutions and processes
- Conducting vulnerability assessments of:
- External and internal network security
- Wireless
- Web applications
- Critical hosts
- Physical security
- Program code - Investigating incidents and applying forensics
- Ethically hacking and testing networks and applications
Material on this website is © 2012 Deloitte Global Services Limited, or a member firm of Deloitte Touche Tohmatsu Limited, or one of their affiliates. See Legal for copyright and other legal information.
Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee, and its network of member firms, each of which is a legally separate and independent entity. Please see www.deloitte.com/about for a detailed description of the legal structure of Deloitte Touche Tohmatsu Limited and its member firms.