ConnectiveRx interview question

What vulnerability scanning tools do you use?

Interview Answer

Anonymous

Mar 7, 2018

I have used both Qualys and Nessus. After doing an internal scan, of which I've done both unauthenticated and authenticated, I typically attempt to reduce the results for Operations teams for any vulnerabilities that may have mitigating factors in play; for instance a well-configured firewall in-between zones. I prefer to work with other teams and not create unnecessary work for them.