Just curious on thoughts of this… if you’re a big company, why not continuously scan/discover hosts and subsequently scan all hosts for vulnerabilities? I understand it would take time etc. but I’d think the big data insights would be more valuable (e.g. know your network/assets etc.)? Or are companies already doing this? Or is there performance concerns with creating a lot of traffic/load on the devices themselves?

Share This Discussion

4 Comments

  • actionfactor12

    November 4, 2021

    Continuous scanning is definitely a strategy some companies use already.

    Reply
  • Cli2tl1

    November 4, 2021

    That costs real money. power, equipment, rack space and licensing to do it at hundreds of sites adds up fast, the alternative being centralized scan servers, but then you pay for extra bandwidth that isn’t being used for backups, upgrades etc… If PCI compliance comes into play then yes there are scheduled scans and NAC ( network access control) solutions that are required, but the purpose of a company is to accumulate money, so if expenses can be avoided, they must be, or you’ll go out of business to a competitor who was more streamlined.

    Edit: un-auto corrected

    Reply
  • c_pardue

    November 4, 2021

    Take that idea, add endpoint scanning, add live threat feeds, then scale it, add a single monitoring dashboard, and now you have every enterprise security suite.

    Reply
  • CPAtech

    November 4, 2021

    There are products that already do this.

    Reply

Leave a Comment

Note: By filling this form and submitting your commen, you acknowledge, agree and comply with our terms of service. In addition you acknowledge that you are willingly sharing your email address with AiOWikis and you might receive notification emails from AiOWikis for comment notifications. AiOWiksi guarantees that your email address WILL NOT be used for advertisement or email marketting purposes.

This site uses Akismet to reduce spam. Learn how your comment data is processed.