Workshop - Enterprise Vulnerability Assessment

This workshop covers tools and techniques how Enterprise Vulnerability Assessment can be implemented in a comprehensive way. It is based on the wide experience that ERNW has gained during implementation projects of Vulnerability Assessment for various large organizations and will also cover the typical pitfalls in such environments.

Agenda:

- Requirements for an enterprise vulnerability assessment process
- Tool overview (Nessus, Foundscan, Qualys, Appscan, Burp Professional, Repscan)
- Pros and Cons of the tools in the enterprise context
- Asset Collection for scanning
- Useful scan configurations and approaches
- Reporting and Rating of the findings
- Tracking of the mitigation process
- Goals that can and can't be achieved with Vulnerability Assessment

In case all participants are German speakers (and this is what we expect) the workshop will be held in German. The training material is in English though.