Vulnerability Report

Wiki > Vulnerability Report

Vulnerability Scans Reporting
Once per month
3
Scan servers – Open request case – send email – rescan servers
Yes

Vulnerability Scans on Internal Servers

Scan all internal servers using our vulnerability scanner (Nessus – Tenable)
Send email to IT Operation team attaching the report
Open a case on HPSM and assign to specific IT Operation team and attach report to the case
Send out an email to IT Operation team with the case number for them to start patching process
Once case is closed on HPSM, rescan all the servers again
If the servers have been patched then send an email to IT Operations saying that the request has been completed.
If there are still vulnerabilities on the server after rescanning, then case should be reopened and email sent again