To get useful reporting regarding the most vulnerable CI's, which statement applies?
You must purchase a separate PA module.
Your CI population must be huge.
You must have good KPi's defined.
Your CMDB must be up to date and useful.
The components Installed with Vulnerability Response Include:
Tables, Scheduled Jobs, Security Operations Common
Business Rules, Roles, Workflows
Properties, Client Scripts, Wizards
Ul Pages. Business Rules, Vulnerability Scanners
Which Vulnerability maturity level provides advanced owner assignment?
Enterprise risk trending
Automated prioritization
Manual operations
Improved remediation
Filter Groups provide a way to:
Decouple the use of the grouping from the definition of the grouping
Build criteria once
Reuse criteria in a variety of places
All of the above
Which of the following is a common Integration point between Vulnerability and GRC?
Security Incident Response
Change
Problem
Risk Indicators
Ignoring a Vulnerable item:
Permanently removes the item from the list of Active Vulnerable items
Move the item to the Slushbucket
Has no impact on the list of Active Vulnerable Items
Temporarily removes the item from the list of Active Vulnerable items