Vulnerability Scanning, Assessment and Management

2-sec are experts and leading providers of vulnerability scanning, vulnerability assessment and vulnerability management appliances and managed services. We provide:

  • Vulnerability Scanning – 2-sec install and configure our VSAM appliance and show you how to use it.
  • Vulnerability Assessment – 2-sec interpret the scanning results on your behalf.  We can use our VSAM appliance, or one you have already purchased and installed.
  • Vulnerability Management – 2-sec provide a fully managed scanning and assessment solution, risk assess the results and develop patching, reconfiguration and risk remediation strategies, in addition to updating signature sets and filtering out false positives.  We can use our VSAM appliance, or one you have already purchased and installed.

Unlike other companies that simply show you a list of vulnerabilities, we prefer to work with you to resolve the issues we discover as part of our service.  Our reports show where your vulnerabilities were found, why they may increase your risk and recommend action your organisation can take. We not only offer advice on how to close the holes, we help uncover why they may have occurred. We can then provide training in process design and implementation to help prevent future problems.

We partner with industry leaders such as Qualys, to ensure you have the best available tools at your fingertips, that are mature, well-tested and highly regarded.  Although new to market scanning services do rely on common CVE, NVD and OSVDB feeds, it is the way in which this information is presented and the separation of academic and real threats that will offer you true value, and that is what we provide.

All of our Vulnerability Scanning, Assessment and Management services include:

  • Network Vulnerability Scanning – Addresses threats that an authorized or unauthorized network user could exploit.
  • Authenticated Vulnerability Scanning – Addresses threats that an authenticated user could exploit (or an attacker whom has stolen credentials), and also scans targets for configuration vulnerabilities (in line with the Center for Internet Security standards).
  • External and Approved Scanning Vendor (ASV) Scanning – External / ASV scanning addresses external threats that anyone on the Internet could potentially exploit.  An ASV component is available should these tests require PCI DSS validation and provided by an Approved Scanning Vendor.

Accurate vulnerability management is a key component of best practice security, as is the way in which vulnerabilities are handled and remediated.  2-sec’s service provides the missing link between the output of vulnerability scanning tools and the delivery of a securely configured and patched infrastructure.

Call us or email us today and take advantage of our no obligation 14 day trial.