温馨提示:本站仅提供公开网络链接索引服务,不存储、不篡改任何第三方内容,所有内容版权归原作者所有
AI智能索引来源:http://www.ibm.com/think/topics/vulnerability-management-lifecycle
点击访问原文链接

What is the Vulnerability Management Lifecycle? | IBM

进入原网站 导航首页
WelcomeOverviewOverviewOverviewPhishingSpear phishingSpear phishing versus standard phishingSmishingBusiness email compromise (BEC)Whale phishing (whaling)PretextingOverviewRansomwareRansomware as a service (RaaS)ScarewareHistory of malwareOverviewThreat actorHackingAttack vectorAdversarial machine learningDistributed denial of service (DDoS) attackZero day exploitMan in the middle (MITM) attackBrute force attackLateral movementInsider threatsAdvanced persistent threatsKerberoastingCryptojackingData poisoningDark webOverviewData breachData exfiltrationPII (personally identifying information)Digital footprintData protectionData security posture managementData discoveryDatabase securityData privacyData privacy examplesXaaS data securityOverviewSymmetric encryptionAsymmetric encryptionPublic key infrastructurePublic key encryptionKey managementBring your own key (BYOK)CryptographyHomomorphic encryptionEnd-to-end encryptionCryptography typesCryptography use casesHistory of cryptographyTransport layer securityConfidential computingTokenizationOverviewNonhuman identityMachine identity managementIdentity securityIdentity fabricIdentity orchestrationCustomer IAM (CIAM)OverviewAuthentication versus authorizationSingle sign-on (SSO)Two-factor authentication (2fA)Multi-factor authentication (MFA)Adaptive MFAPhishing-resistant MFABiometric authenticationBehavioral biometricsCAPTCHAFIDOFIDO2Digital credentialsOverviewAccess controlsPrivileged access management (PAM)User provisioningRBACOAuthOverviewCloud security posture management (CSPM)Cloud workload protection platform (CWPP)OverviewMobile securityMobile workforceBring your own device (BYOD)Mobile device management (MDM)MDM versus mobile application management (MAM)Enterprise mobility management (EMM)Unified endpoint management (UEM)UEM versus MDMAndroid device managementNetwork securityInformation securityIT securityOT securityEmail securityWeb securityCritical infrastructureZero trustSecure access service edge (SASE)CIS benchmarksOverviewVulnerability management lifecycleVulnerability scanningVulnerability assessmentCVE (Common vulnerabilities and exposures)CVSS (Common vulnerabilities scoring system)Patch managementSecurity postureAttack surfaceAttack surface managementShadow ITLog4shellLog4J vulnerabilityLog4j vulnerability detection and patchingSaaS sprawlOverviewApplication security posture management (ASPM)Dynamic application security testing (DAST)OverviewEthical hackingRed teamingBlue teamPenetration testingNetwork penetration testingPhishing simulationBreach attack simulationOverviewAI securityAI fraud detection in bankingOverviewIncident responseDigital forensicsComputer forensicsDigital forensics and incident responseFraud detectionSecurity information and event management (SIEM)Security orchestration automation and response (SOAR)Endpoint detection and response (EDR)Network detection and response (NDR)Extended detection and response (XDR)Identity threat detection and response (ITDR)Data detection and response (DDR)Data loss prevention (DLP)Intrusion detection system (IDS)Intrusion prevention system (IPS)User behavior analytics (UBA)User and entity behavior analytics (UEBA)Distributed denial of service (DDoS) protectionNext generation antivirus (NGAV)OverviewThreat intelligenceOSINTThreat huntingMITRE ATT&CKNISTCyber resilienceCyber insuranceSecurity controlsManaged security service providerSecurity operations center (SOC)Managed detection and response (MDR)Cyber rangeCybersecurity crisis communicationMatthew KosinskiNational Vulnerability Databasevulnerability managementIBM Privacy StatementhackersLog4J vulnerabilityJavamalwareX-Force Threat Intelligence Indexcyberattackcyber risk managementpatch managementWatch the latest podcast episodeshadow ITattack surface managementpenetration testingthreat intelligenceCommon Vulnerabilities and Exposures (CVE)Common Vulnerability Scoring System (CVSS)zero-day vulnerabilitiesincident response plansWebinar On-demand Achieve continuous compliance in a hybrid data world with IBM Guardium Data Protection Register for this webinar to learn how AI governance helps organizations manage risk, meet evolving regulations and build trusted, responsible AI at scale. Register nowNEW Smarter AI governance and security solutions Learn how to turn governance and security into drivers of resilience, smarter decision-making and confident growth with practical strategies from this buyer’s guide. Get the guideTII report IBM X-Force Threat Intelligence Index 2026 Gain insights to prepare and respond to cyberattacks with greater speed and effectiveness with the IBM X-Force® Threat Intelligence Index. Read the reportCybersecurity guide Cybersecurity in the era of generative AI Learn how today’s security landscape is changing and how to navigate the challenges and tap into the resilience of generative AI. Read the guideKuppingerCole report See why KuppingerCole ranks IBM as a leader The KuppingerCole data security platforms report offers guidance and recommendations to find sensitive data protection and governance products that best meet clients’ needs. Read the reportTEI report The total economic impact (TEI) of Guardium Data Protection Discover the benefits and ROI of IBM Guardium® Data Protection in this Forrester TEI study. Read the reportOn-demand webinars Guardium® webinars Learn how to protect your data across its lifecycle from our webinars. Explore on-demand webinarsGartner Market Guide Gartner® Market Guide for AI TRiSM Access this Gartner guide to learn how to manage the complete AI inventory and secure your AI workloads with guardrails. It also shows how to reduce risk and manage the governance process to achieve AI trust for all AI use cases in your organization. Read the guideSecurity tutorials Expand your skills with free security tutorials Follow clear steps to complete tasks and learn how to effectively use technologies in your projects. Explore tutorialsIAM explainer What is identity and access management (IAM)? Identity and access management (IAM) is a cybersecurity discipline that deals with user access and resource permissions. Read the articleExplore Guardium Vulnerability AssessmentExplore vulnerability assessment solutionsExplore vulnerability management servicesExplore Guardium Vulnerability AssessmentExplore vulnerability assessment solutions

智能索引记录