Skip to McMaster Navigation Skip to Site Navigation Skip to main content
McMaster logo

Office of the AVP & CTO

INFORMATION TECHNOLOGY SECURITY

Vulnerability Management Standard

Vulnerabilities are software defects that compromise information assurance, including confidentiality, integrity, and availability.

A vulnerability is a software flaw that malicious actors exploit to disrupt services or gain unauthorized access to systems and information. These vulnerabilities pose significant risks, and attackers are constantly searching for new ones. Consequently, a server secure today may become vulnerable tomorrow. Effective vulnerability management is crucial for routine server and service maintenance. Timely installation of vendor patches and bug fixes, along with secure configurations, are essential to prevent unauthorized access. The IT Security team assists in ensuring your server’s security by notifying you of any issues. We use the Vulnerability Management Standard Operating Procedure to inform you of missed patches or necessary updates to your TLS configuration.