Eine Plattform für die Wissenschaft: Bauingenieurwesen, Architektur und Urbanistik
Eine Plattform für die Wissenschaft: Bauingenieurwesen, Architektur und Urbanistik
Implementing Vulnerability Assessment Tool as an On-Premises configuration
The purpose of this thesis project was to find a suitable vulnerability assessment application, that offers comprehensible features that allows the client to scan for vulnerabilities and exploits in their IT infrastructure. The objectives included comparing different options with the requirements set by the client. These requirements included implementing the software on premises instead of a cloud-based SaaS (Software as a Service) model, being easy to use and quick to set up as well as having extensive options for reporting. The client company is a Finnish software company who offer services for the social and healthcare industry in Finland, as well as a subsidiary company based in Sri Lanka. The services offered by the client reach over 2 million users in Finland, and are used by public and private healthcare centres, military as well other governmental institutions. The client benefits from this project by having an extra layer of security to help safeguard its infrastructure if being implemented fully into the existing environment. The research part of this project was conducted as a case study. The problem the client had was the lack of in-house tools to search for and find exploits or vulnerabilities in their IT infrastructure, with the only options previously being audits by outside parties. The client had several requirements on what the implemented tool should have. The most important requirement being to have the vulnerability management tool be installed on premises, due to requirements by the clients’ customers to minimize use of cloud-based platforms. This in turn meant that a considerable amount of time had to be used to research options that were possible to have on premises. The results of this project were positive. The possibility of testing Nexpose on a separate environment the client uses for testing purposes for their different products before being pushed into production meant that valuable information was gathered. The software was able to find between 10-30 different vulnerabilities in many assets in the testing environment, and remediation plans as well as executive style reports were able to be generated by the data. This in turn means that the implementation of Nexpose into the clients’ IT infrastructure could benefit the client greatly, with having the desired extra layer of security in-house.
Implementing Vulnerability Assessment Tool as an On-Premises configuration
The purpose of this thesis project was to find a suitable vulnerability assessment application, that offers comprehensible features that allows the client to scan for vulnerabilities and exploits in their IT infrastructure. The objectives included comparing different options with the requirements set by the client. These requirements included implementing the software on premises instead of a cloud-based SaaS (Software as a Service) model, being easy to use and quick to set up as well as having extensive options for reporting. The client company is a Finnish software company who offer services for the social and healthcare industry in Finland, as well as a subsidiary company based in Sri Lanka. The services offered by the client reach over 2 million users in Finland, and are used by public and private healthcare centres, military as well other governmental institutions. The client benefits from this project by having an extra layer of security to help safeguard its infrastructure if being implemented fully into the existing environment. The research part of this project was conducted as a case study. The problem the client had was the lack of in-house tools to search for and find exploits or vulnerabilities in their IT infrastructure, with the only options previously being audits by outside parties. The client had several requirements on what the implemented tool should have. The most important requirement being to have the vulnerability management tool be installed on premises, due to requirements by the clients’ customers to minimize use of cloud-based platforms. This in turn meant that a considerable amount of time had to be used to research options that were possible to have on premises. The results of this project were positive. The possibility of testing Nexpose on a separate environment the client uses for testing purposes for their different products before being pushed into production meant that valuable information was gathered. The software was able to find between 10-30 different vulnerabilities in many assets in the testing environment, and remediation plans as well as executive style reports were able to be generated by the data. This in turn means that the implementation of Nexpose into the clients’ IT infrastructure could benefit the client greatly, with having the desired extra layer of security in-house.
Implementing Vulnerability Assessment Tool as an On-Premises configuration
Saletta, Christopher (Autor:in)
01.01.2019
Sonstige
Elektronische Ressource
Englisch
DDC:
690
| Online Contents | 2011
| British Library Online Contents | 2004
| Taylor & Francis Verlag | 2004
| Online Contents | 2004