Ongoing Vulnerability Scanning

---

Triaging vulnerability data and prioritizing actions has historically been a very manual process, until now. With DTRI and InsightVM, learn how to trace security and performance issues by leveraging continuous profiling capabilities for actionable insight that help security teams remediate problems.

Let’s talk about the reality of the remediation process today. We know it is often a cumbersome and time-consuming process, and it can be challenging for a Security team to work with IT Operations and Development teams, servicing many assets and owners. There isn’t a vulnerability management team on the planet that hasn’t been affected by productivity-draining reporting, emails, ticketing, and one-off vulnerability verification requests.

We help solve this hairy problem for our customers with Remediation Projects which allow teams to coordinate on the progress of remediation initiatives. Remediation Projects serve as living, breathing versions of the more traditional spreadsheets that have commonly been used by security teams. These Projects take a solution-based approach and provide remediators with the exact steps needed to patch vulnerabilities and, ultimately, reduce risk. 

At DTRI Global, we have adopted Best of Breed technologies that allow us to provide ongoing Vulnerability Scanning to your entire infrastructure. Scans can be set to run as often as you need it. Many of our customers run scans weekly to ensure that any changes or new Vulnerabilities are identified right away. 

It’s easy to say ongoing vulnerability scanning, but what does that actually translate to under the hood? Does that mean as soon as one scan finishes the next one starts? What about load-intensive website scans, how often do they run?

We have found our customers  wanted control over when their scans were happening. That’s why we allow customers to control their own scan schedule, and run Vulnerability Scans as soon as new vulnerabilities are discovered. Scans can be scheduled for any Day/Time needed.

This provides our customers with unparalleled control over the load on their environments, as well as the benefits of ongoing vulnerability monitoring.

On average, over 8,000 new vulnerabilities are discovered in common software and hardware platforms every year. That's over 20 every single day. In addition, developers and IT teams can often deploy new code or make changes on a daily basis. With attackers scanning the internet constantly looking for weaknesses that could allow them in, only an ongoing scanning solution can hope to alert you in time.

Most companies don't have time to keep on top of all this, IT managers have a million other things to do, and even well resourced security teams can be kept busy with tracking remediation activity, providing management reports, responding to incidents, providing advice to the business, and all the other work that security teams do. That’s why Intruder focuses on providing all this with no noise, only actionable security issues.

Many companies today still rely on having an “annual penetration test”, but for the reasons above, this has quickly become impractical in recent years. Waiting a year to discover you’ve been exposed is not a good strategy for keeping out of the news headlines.

Penetration testers use vulnerability scanning tools to do their job, or a large part of it at least. So continuous vulnerability scanning is comparable to having continuous penetration testing all year round.

There are differences in the depth of testing, and types of issues that can be found between the two approaches though,  but for ongoing peace of mind, a Vulnerability Scan can head of issues before they are detected during a Pentest.

You might want continuous security scans, but that doesn’t mean you want to constantly deal with a flood of alerts. The opposite in fact, you want it running in the background, but only to be alerted when something is really wrong. We accomplish this with scheduled reports that are targeted to what you want to see.

Our focus on prioritising only the most important issues filters out non-essential information, while promoting any context-specific weaknesses, like databases being left exposed to the internet. We also provide notifications on changes from one scan to the next, so you can see any differences immediately.

DTRI Global and InsightVM keep you informed, but not overwhelmed.