Vulnerability Management at UAB

The University of Alabama at Birmingham uses a unique vulnerability management system leveraging multiple Nessus scans to communicate with the departmental administration staff. The system is implemented using Python and has supported integration with WSUS and Metasploit. The system currently exports into Splunk for easy dashboard integration as well as leveraging vulnerability data in daily security operations. Come join this session for a history of our scanning efforts, implementation challenges, reporting challenges and solutions, supporting processes, and plans going forward.