SEC05-02 Vulnerability Management
With vulnerability management, you can detect and rectify security vulnerabilities in the system in a timely manner, avoiding potential security threats and attacks. Others may illegally obtain system access privileges through security vulnerabilities. You should obtain the latest security intelligence through trusted channels.
- Risk level
High
- Key strategies
You can install patches to fix security vulnerabilities in a timely manner to prevent malicious individuals or software from damaging service systems and data. Stay informed of the latest security advisories of Huawei Cloud and the industry, and implement mitigation measures to ensure workload security.
- Stay informed of the latest security suggestions of Huawei Cloud and the industry.
For details about the latest security information, see Public Notices.
- Vulnerability scanning and identification: Huawei Cloud services are used to periodically scan systems and applications to detect potential vulnerabilities and security risks.
- Automatic vulnerability scanning: Use automatic vulnerability scanning tools to periodically scan the runtime environment to detect potential vulnerabilities and security risks.
- Vulnerability fixing and patch management: Develop a vulnerability fixing plan, fix confirmed vulnerabilities in a timely manner, and manage the release and application of security patches.
- Detection and removal of malicious code at key nodes: Malicious code must be checked and removed at key network nodes, and the upgrade and update of the malicious code protection mechanism must be maintained.
- Stay informed of the latest security suggestions of Huawei Cloud and the industry.
- Related cloud services and tools
- HSS
- SecMaster
- CodeArts Inspector
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot