Skip to main content

Vulnerability Management

Software bug

The Vulnerability Management team provides expert guidance and consultation on vulnerability prevention and remediation to departments in the effort to continually improve ASU’s security posture. The services we provide include vulnerability scanning, penetration testing, and specialized analytics on vulnerability, risk, and compliance performance indicators.

The Vulnerability Management Program includes: 

  • Identification, vulnerability scanning, and penetration testing of connected network assets and web applications

  • Identification, prioritization, and tracking of asset and web application vulnerabilities

  • Expert guidance and consultation on vulnerability prevention and remediation

  • Routine and specialized analytics on vulnerability, risk, and compliance performance indicator

Developer Resources

Vulnerability resources available to developers and best practice information by platform.

Network Scanning

Monthly scanning schedule and communications for scanning.

Web App Scanning

We are currently offering web application scanning services by request through a ServiceNow ticket. In addition, we have set up a developer...

Third Party Scanning Requirements

Third parties are required to share scanning and pen testing results with ASU. See PO/Contract language Section 17. Often Vendors will require an NDA...

Vulnerability Remediation

Remediation information and redirects. For additional assistance please submit a ServiceNow ticket.

Contact Us

Please Note: Vulnerability Management office hours have changed as of October 1, 2020

The Vulnerability Management Team offers open office hours on the 1st and 3rd Thursday of each month from 1:30pm to 3:30pm.

For additional support or questions please submit a ServiceNow ticket request to the Vulnerability Management group.  This includes requests to be added to the Vulnerability Management slack channel.