Literature Review of Vulnerability Management Best Practices in Cybersecurity
Ruotsalainen, Aleksi (2024)
Julkaisun pysyvä osoite on
https://urn.fi/URN:NBN:fi:amk-2024121937537
https://urn.fi/URN:NBN:fi:amk-2024121937537
Tiivistelmä
The objective of this bachelor’s thesis was to create a list of recommendations of vulnerability management best practices with focus on IT environments. This thesis was carried out as a commission for Nordic IT company.
A qualitative meta-synthesis and content analysis was applied in this thesis to analyze vulnerability management publications and literature to examine existing best practices and recommendations.
The main conclusion is that efficient vulnerability management programs require engagement of multiple stakeholders from leadership to other internal teams and should be aligned with organization’s existing processes, tools and business objectives. It was found also that many publications recommend a risk-based approach to vulnerability management.
A qualitative meta-synthesis and content analysis was applied in this thesis to analyze vulnerability management publications and literature to examine existing best practices and recommendations.
The main conclusion is that efficient vulnerability management programs require engagement of multiple stakeholders from leadership to other internal teams and should be aligned with organization’s existing processes, tools and business objectives. It was found also that many publications recommend a risk-based approach to vulnerability management.