Week 4 SANS Reading and article

The importance of vulnerability scanning cannot be minimized.  The attack vectors routinely target systems which are vulnerable from an upgrade, patch or security perspective.   Organizations which have implemented vulnerability scanners such as Nessus provide themselves with some protection for known vulnerabilities and ensuring their configurations are up to date.  The only downside is the vulnerability engines are limited to the vulnerabilities it is aware and has a plug-in for.  This type of solution works best when coupled with firewall and IDS systems to add layers of defense to your organization while proactively protecting your systems.

This weeks article illustrates the risk associated with email specifically in the health care industry.

http://www.databreachtoday.com/sutter-health-incident-illustrates-email-risks-a-8533