Vulnerability Management Metrics and Remediation Quiz

Questions and Answers

PDF Questions PDF Answers

What does vulnerability management involve?

Ignoring vulnerabilities and remediation efforts

Tracking vulnerabilities and ignoring remediation efforts

Tracking vulnerabilities and the remediation efforts to mitigate them (correct)

Ignoring vulnerabilities and focusing only on remediation efforts

What type of metrics can vulnerability management provide to enterprise management?

Quantitative metrics related to the number of remediated vulnerabilities only

Qualitative metrics related to the numbers and types of vulnerabilities and their potential impacts (correct)

Qualitative metrics related to the effort needed to ignore vulnerabilities

Quantitative metrics related to the financial impact only

Why is it important to track vulnerabilities as part of vulnerability management?

To reduce the effort needed for remediation

To increase the number of vulnerabilities in the system

To ignore the potential impacts of vulnerabilities

To provide clear opportunity for good qualitative metrics to enterprise management (correct)

What is the purpose of vulnerability management?

To track vulnerabilities and the remediation efforts to mitigate them and any associated risk