Explore the architecture of QRadar Vulnerability Manager
allenkane 270002Y2HJ Visits (1917)
IBM Security QRadar Vulnerability Manager helps redefine how IT security teams collect and use vulnerability assessment data by identifying your organization's largest exposures and building a smarter remediation and mitigation action plan. It adds enhanced scanning and analysis capabilities to QRadar SIEM, letting users correlate scan results with the security intelligence data of QRadar SIEM. The most security-conscious benefits QVM adds to a protection portfolio is a high level of automation that makes it easy for the security officer to quickly prioritize the vulnerabilities that present the greatest potential dangers and avoid false positives or those already classified as non-threatening -- scans are automatically triggered, launched as the result of network behavior or programmed to run at regularly scheduled intervals against either all components or just a specified subsegment of assets.
The recent developerWorks article An architectural view of QRadar Vulnerability Manager provides a strong first look at how QVM works and interacts with existing security systems.