DERM - VAT Module is an application for using the VAT module on smartphones.
The Vulnerability Assessment Tool (VAT) is a tool of DERM that aims to provide a deterministic assessment of the gaps present in the security systems protecting a given asset, removing this analysis from the subjectivity of the assessor and making it as comprehensive and focused as possible.
Through the operationalization of international standards and best practices, VAT establishes, for each of the areas under consideration, a benchmark against which to identify and measure any gaps in the security system. The adoption of a quantitative approach, capable of amalgamating different types of risk into a single process (through a special standardization process), makes it possible to overcome the otherwise inevitable fragmentation of the process of analyzing the vulnerabilities of a given asset.
The methodology used by VAT is that of the checklist, with closed-ended questions organized into sections (different depending on the type of site being assessed) and the number of which varies according to the level of threat associated with the asset under consideration.
The Vulnerability Assessment Tool (VAT) is a tool of DERM that aims to provide a deterministic assessment of the gaps present in the security systems protecting a given asset, removing this analysis from the subjectivity of the assessor and making it as comprehensive and focused as possible.
Through the operationalization of international standards and best practices, VAT establishes, for each of the areas under consideration, a benchmark against which to identify and measure any gaps in the security system. The adoption of a quantitative approach, capable of amalgamating different types of risk into a single process (through a special standardization process), makes it possible to overcome the otherwise inevitable fragmentation of the process of analyzing the vulnerabilities of a given asset.
The methodology used by VAT is that of the checklist, with closed-ended questions organized into sections (different depending on the type of site being assessed) and the number of which varies according to the level of threat associated with the asset under consideration.
Show More