Secureframe’s vulnerability management module pulls in and tracks vulnerability information from your cloud environment, particularly through your native scanning service such as AWS Inspector, Azure’s Microsoft Defender, GCP container scanning, Github Dependabot, etc. Here's a breakdown of the process:
- Enable Native Vulnerability Scanners. Enable the vulnerability scanning tools Secureframe supports and begin scanning your infrastructure and code repositories within the source systems. .
- Vulnerability Detection. The scanners will identify vulnerabilities in the cloud infrastructure, operating systems, applications, or any other components being monitored.
- Data Ingestion. The data on detected vulnerabilities is then ingested into the vulnerability management module within the Secureframe UI utilizing the integrations configured with tools such as AWS and Github. This module serves as a central repository for all vulnerability information being ingested by the vulnerability scanning services giving you a centralized view of all vulnerabilities between all native vulnerability scanners.
- Consolidated View. By ingesting data from multiple sources via the integrations, including native scanners like AWS Inspector and/or Github’s Dependabot, into the Secureframe vulnerability management module, users can have a consolidated view of all vulnerabilities present based on results of these tools. This "single pane of glass" view is valuable for understanding the overall security posture of their cloud infrastructure.
- Remediation. Teams can then work on addressing the vulnerabilities based on the risk. Remediation may involve applying patches, reconfiguring systems, or implementing other security measures to eliminate or mitigate the identified vulnerabilities within the tools and services they were identified in. Once the vulnerabilities are remediated, this will reflect in the Secureframe tool showing resolved.
- Continuous Monitoring. Secureframe will continue to ingest vulnerability data as long as scanning sources are integrated within the Secureframe system and still running.
The vulnerability management process helps organizations proactively manage and improve their security posture in a cloud environment by identifying, prioritizing, and addressing vulnerabilities efficiently. Secureframe will help consolidate vulnerabilities found from the many vulnerability scanning services the platform can integrate with.
Our vulnerability management module would automatically integrate from the following sources as applicable:
- Virtual Machines
- AWS Inspector Classic
- AWS Inspector v2
- Containers
- AWS ECR
- GCP Container Analysis
- Microsoft Defender for Cloud
- Code Dependencies
- GitHub Dependabot
Comments
0 comments
Article is closed for comments.