Vulnerabilities provide opportunities for threat actors (adversaries) to compromise the confidentiality, integrity or availability of mission-critical systems. These vulnerabilities, when exploited, allow the adversary to complete activities within their attack campaign and/or accomplish their goal. Vulnerabilities exist within critical information infrastructures at many levels including information, assets, networks, applications and devices as well as within the operational and procedural elements specific to personnel. The identification and management of cyber vulnerability is critical to an organization’s risk management process since it allows them to identify, analyse and prioritize specific areas of weakness that can be used by an adversary to target and attack mission-critical systems. In this course the student will be introduced to the broad range of vulnerabilities that can exist within an organization, learn how those vulnerabilities contribute to cyber risk and how to evaluate, prioritize and mitigate those vulnerabilities. Students will learn how seemingly disparate and unrelated vulnerabilities can contribute to the adversary attack plan and how the identification, management and mitigation of those vulnerabilities can greatly improve the organizational cyber risk profile.
If you would like to learn more about the IAEA’s work, sign up for our weekly updates containing our most important news, multimedia and more.
Webinar 7: Technical Vulnerability Management
Related courses
How to enroll
CLP4NET course enrolment requires a valid NUCLEUS account. The NUCLEUS Web Single Sign-on system allows registered and authorized users to securely access a variety information resources with a single username and password.
To register a new NUCLEUS account, click here.
Please visit our help pages for information on how to register, sign-in or for other useful information.