There are tens of thousands known vulnerabilities and each year the list grows larger. Our VMaaS service centres around the continuous identification, prioritisation and remediation tracking of security vulnerabilities and critical infrastructure configuration weaknesses. This allows our clients’ IT and Security Teams to focus on timely remediation of those security weaknesses that pose the greatest risk to the business.
Based on an asset class, identify the top threats, and threat agents that class of assets is most sensitive to, linked to the attack vector most likely to be exploited by a would-be cyber-criminal.
Periodically update the model in line with the ever-changing threat landscape
Drive and track remediation of vulnerabilities
Provide trend reports to gauge program effectiveness
Provide advice on mechanisms to mitigate against exposures including:
Maintain a record of unmitigated exposures and rationale applied to risk acceptance
© 2010 - 2019 PwC. All rights reserved. PwC refers to the PwC network and/or one or more of its member firms, each of which is a separate legal entity. Please see www.pwc.com/structure for further details.