Mar 22, 2012
Strategy: Choosing the Right Vulnerability Scanner for Your Organization
Vulnerability scanners can be used to help detect and fix systemic problems in the organization’s security program and monitor the effectiveness of the organization’s security controls. Choosing the right vulnerability scanner for your environment can be a tricky process because every organization has its own challenges and needs. And even when you find just the right tool for your organization, it’s important to understand that scanners alone do nothing to increase the security posture of an organization. To be effective, vulnerability scanners must be incorporated into a much larger vulnerability management program.
IT and security professionals will need to consider a great many criteria when evaluating vulnerability scanners, not the least of which are where to host the system and whether to go with an open source or commercial option, or some combination of both. When choosing a vulnerability scanner, it’s also critical that organizations consider not only current needs but future growth. Finding a system that can grow as your company’s network grows—and as the threats to the network increase—is key. (S4700312)