Developing and Implementing Vulnerability Management Programs

Focused View

Prashant Pandey

1:20:17

115 View

1 - Course Overview

1. Course Overview.mp4

01:40

2 - Developing a Vulnerability

1. Introduction.mp4

01:26

2. Collecting the Requirements.mp4

03:12

3. Deciding the Scope.mp4

02:15

4. Deciding the Roles and Responsibilities.mp4

01:25

5. Factoring the Limitations and Business Needs.mp4

01:27

6. Case Study - Creating a VM Framework for Globomantics.mp4

04:58

3 - Creating a Vulnerability

1. Introduction to the Module.mp4

00:47

2. Choosing between In-house and Outsourced Requirements.mp4

02:37

3. Asset Classification.mp4

02:11

4. Periodicity Requirements.mp4

01:48

5. Vulnerability Assessment and Penetration Tests.mp4

01:15

6. Prioritize Threats and Vulnerabilities.mp4

04:18

7. Selecting Threat Feeds.mp4

01:07

8. Case Study - Globomantics.mp4

03:03

4 - Vulnerability Remediation

01. Introduction to the Module.mp4

00:54

02. Deciding a Reporting Template.mp4

05:10

03. Deciding a Remediation SLA.mp4

03:01

04. Testing and Deployment of Patches.mp4

02:54

05. Remediation, Mitigation, and Compensatory Controls.mp4

02:11

06. Deciding Your Risk Appetite.mp4

01:06

07. Case Study - VM Remediation and Reporting Practices.mp4

02:10

08. Case Study - Technical Report Walkthrough.mp4

02:24

09. Case Study - Vulnerability Summary Report Walkthrough.mp4

04:16

10. Case Study - Vulnerability Trend Report Walkthrough.mp4

03:47

11. Case Study - Globomantics - Risk Appetite and Compensatory Controls.mp4

07:14

5 - Monitoring and Evaluating

1. Introduction to the Module.mp4

00:50

2. Qualitative Evaluation of VM Program.mp4

01:48

3. Quantitative Evaluation of VM Program.mp4

01:18

4. Common KPIs and Their Objectives.mp4

02:57

5. Drafting a Vulnerability Management Policy.mp4

04:48

Exercise Files

developing-implementing-vulnerability-management-programs.zip

Description

This course is for Security Managers & CISOs to create, run, and manage their VM program effectively. This course deals with handling vulnerability management, compliance management, risk management, and VAPT in a single integrate framework.

What You'll Learn?

Developing a vulnerability management program is as much a challenge as implementing the same. In this course, Developing and Implementing Vulnerability Management Programs, you will learn to quickly design, implement, measure, and enhance your vulnerability management program based on the needs of your organization. First, you will learn to define a VM framework, then develop our VM program. Next, you will discover how to implementing the VAPT and patch management activities. Finally, you will define the KPIs for monitoring the performance of the VM program. When you are finished with this course, you will be able to design a VM program for an organization of any size or vertical.

More details

User Reviews

Rating

average 0

Total votes0

Focused display

Software Engineering

Cyber Security

Prashant Pandey

Instructor's Courses

With comprehensive experience in Cyber Security, Ethical Hacking, VAPT and Security Consultancy, I aim to bring my experience and knowledge to all professionals in this field. I have tested over 100 web and mobile applications. I have experience with compliance like ISO 27001, GDPR and PCI DSS. My areas of interest include Web and Mobile App Pentesting, Dark Web Intelligence, Cryptography, Enterprise Security, Network Security, ISO Standards and GDPR. I have conducted extensive online and offline training. My training audience mostly include working professionals and college grads. Certs: CISSP, AWS Security Specialty, AD Security+, ISO 27001 LA

Pluralsight

View courses Pluralsight

Pluralsight, LLC is an American privately held online education company that offers a variety of video training courses for software developers, IT administrators, and creative professionals through its website. Founded in 2004 by Aaron Skonnard, Keith Brown, Fritz Onion, and Bill Williams, the company has its headquarters in Farmington, Utah. As of July 2018, it uses more than 1,400 subject-matter experts as authors, and offers more than 7,000 courses in its catalog. Since first moving its courses online in 2007, the company has expanded, developing a full enterprise platform, and adding skills assessment modules.