Security TestingMedium
Vulnerability Assessment
A systematic process of identifying, quantifying, and prioritizing security vulnerabilities in systems
Skill Paths:
Vulnerability AssessmentPenetration TestingSecurity TestingRisk Management
Job Paths:
Vulnerability AnalystPenetration TesterSecurity ConsultantSecurity Engineer
Relevant Certifications:
CEHOSCPSANS GPENCompTIA Security+
Content
What is Vulnerability Assessment?
Vulnerability Assessment is a systematic approach to identifying security weaknesses in systems, networks, and applications. It helps organizations understand their security posture and prioritize remediation efforts.
Assessment Types
- Automated Scanning – Using tools to identify known vulnerabilities
- Manual Testing – Human-driven analysis of security controls
- Hybrid Approach – Combining automated and manual methods
- Continuous Assessment – Ongoing monitoring and testing
Best Practices
- Conduct assessments regularly
- Use multiple assessment tools
- Prioritize vulnerabilities by risk
- Document findings and remediation steps
- Follow up on remediation efforts
Quick Facts
Severity Level
6/10
Types
Automated scanning, manual testing, hybrid
Frequency
Regular intervals, after changes
Output
Vulnerability report with remediation
Example
Weekly automated scans of web applications
Related Terms