Overview

Service Providers:  OISO

• Training

• Service Maintenance

• Access

• Service Requests

Audience: Any technical support staff that manages a server,  application, or any I.T. infrastructure on campus.

Definition: Vulnerability Management

• What is Vulnerability Management?

• What are the underpinnings of a compliant solution?

Purpose: Business case & Solutions requirements (.docx)

• The challenges and reasoning that has lead to this solution.

• Definition of solution requirements

Standards and Compliance: UAlbany Server Standards

• In order to maintain compliance with UAlbany Server Standards, the system administrator must have a method to continuously acquire, assess, and respond to information that identifies vulnerabilities to facilitate remediation, and thereby minimize the window of opportunity for attackers.

Documentation

Roles & Responsibilities: Security Center - Roles.docx

Procedures:

Process Workflows (working documents):

• Preparation.pdf

• Scheduled Scans.pdf

• Remediation Phase.pdf

• Implement Remediation Actions.pdf

• Rescan.pdf

Expectations:  Expectations.pdf

How-to info

Request this service:  Contact InfoSec@albany.edu

SecurityCenter portal:  https://SecCenter.iso.albany.edu 

Create / work with:

• Queries: https://docs.tenable.com/sccv/5_4/Content/Queries.htm

• Dashboards: https://docs.tenable.com/sccv/5_4/Content/Dashboard.htm

• Vulnerability Analysis: https://docs.tenable.com/sccv/5_4/Content/VulnerabilityAnalysis.htm

• Reporting: https://docs.tenable.com/sccv/5_4/Content/Reporting.htm