graphgrc

SCF - VPM-06 - Vulnerability Scanning

Mechanisms exist to detect vulnerabilities and configuration errors by recurring vulnerability scanning of systems and web applications.

Mapped framework controls

ISO 27002

• A.8.8

NIST 800-53

• RA-5

SOC 2

• CC7.1

Control questions

Does the organization detect vulnerabilities and configuration errors by recurring vulnerability scanning of systems and web applications?

This site is open source. Improve this page.