Too often, organizations rely solely on the output of a single network-based vulnerability-scanning tool to audit their security posture. These scans can only address network based vectors. Relying solely on network-based scans can give organizations an incomplete view of their security posture. It also can give security analysts a reputation as, “the guys who just show up and run scans.” For all threat vectors to be addressed, the target should be examined from both the inside and outside by a combination of manual tests, automated tools, and policy review.
Read Entire Paper
E-Mail Link
Your IP address will be sent with this e-mail
