From the course: ISC2 Certified Secure Software Lifecycle Professional (CSSLP) (2023) Cert Prep
Unlock the full course today
Join today to access over 23,100 courses taught by industry experts.
Vulnerability management
From the course: ISC2 Certified Secure Software Lifecycle Professional (CSSLP) (2023) Cert Prep
Vulnerability management
- [Narrator] In order to detect and address potential weaknesses before an attacker can find them, you'll want to implement an effective vulnerability management process. You can get ahead of those attackers by learning how to scan, track, and triage vulnerabilities. Earlier in this course, when we discussed post-deployment security testing, we talked about vulnerability scanners. While vulnerability scanning is the foundation of vulnerability management, it's not the entire program. Scanning is an important step, but it's only the first one. Like many other aspects of your application security program, vulnerability management is cyclical. You start by scanning for potential weaknesses in every component of your application and app infrastructure. You then validate both the accuracy of the scan results and the severity of the detected vulnerabilities. Sometimes, scanners flag potential vulnerabilities for further investigation, and the severity that the scanner assigns to each…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.
Contents
-
-
(Locked)
Secure architecture and design patterns3m 43s
-
(Locked)
Identifying and prioritizing controls6m 15s
-
(Locked)
Traditional application architectures7m 23s
-
(Locked)
Pervasive and ubiquitous computing6m 43s
-
(Locked)
Rich internet and mobile applications7m 9s
-
(Locked)
Cloud architectures7m 8s
-
(Locked)
Embedded system considerations8m 45s
-
(Locked)
Architectural risk assessments6m 59s
-
(Locked)
Component-based systems5m 2s
-
(Locked)
Security enhancing tools4m 8s
-
(Locked)
Cognitive computing4m 37s
-
(Locked)
Control systems8m 34s
-
(Locked)
-
-
(Locked)
Components of a secure environment8m 25s
-
(Locked)
Designing network and server controls4m 22s
-
(Locked)
Designing data controls6m 25s
-
(Locked)
Secure design principles and patterns5m 6s
-
(Locked)
Secure interface design6m 49s
-
(Locked)
Security architecture and design review3m 6s
-
(Locked)
Secure operational architecture3m 37s
-
(Locked)