Vulnerability management v podnikové IT infrastruktuře

Informace o vysokoškolské kvalifikační práci

Název práce:
Vulnerability management v podnikové IT infrastruktuře
Autor práce:
Hronek, Tomáš
Typ práce:
Bakalářská práce / info:eu-repo/semantics/bachelorThesis
Vedoucí práce:
Veber, Jaromír
Osoba oponující práci:
Klíma, Tomáš
Jazyk práce:
Czech
Abstrakt:
The present thesis deals with the area of vulnerability management and its relation to information security. Its main purpose is to set the topic of vulnerability management in context of company information security and to explain its relationship to related disciplines. In the practical part, selected vulnerability assessment tools are compared and methodology is applied to determine the criticality of the vulnerabilities identified in relation to the provided IT services. The objectives were achieved by literature review, personal consultations with employees responsible for information security at J&T Bank and by comparing the results of several tools for assessing vulnerability (Nessus, Retina, OpenVAS, Nexpose, Tripwire). To date, there has not been published a thesis devoted exclusively to the topic of vulnerability management. This thesis is the first one to provide comparable results of vulnerability scanning of the same targets. Equally valuable is the application of Common Vulnerability Scoring System to determine the criticality of the vulnerabilities identified in relation to delivered IT services.
Klíčová slova:
tools comparison; security configuration compliance; vulnerability assessment; Retina; vulnerability; vulnerability management; exposure; Nessus; CVSS; OpenVAS; Nexpose; Tripwire; severity

Informace o studiu

Studijní program a Studijní obor:
Aplikovaná informatika/Informatika
Typ studijního programu:
Bakalářský studijní program
Jméno přidělované hodnosti:
Bc.
Instituce přidělující hodnost:
University of Economics, Prague
Název fakulty:
Faculty of Informatics and Statistics
Název katedry:
Department of Systems Analysis
Instituce archivující a zpřístupňující VŠKP:
University of Economics, Prague

Informace o odevzdání a obhajobě

Datum zadání práce:
13. 1. 2015
Datum podání práce:
30. 4. 2015
Datum obhajoby:
18.06.2015

Soubory ke stažení

Hlavní práce:
50841_xhrot01.pdf [3,85 MB]
Veřejná příloha:
11262_xhrot01.xlsx [152,29 kB]
Veřejná příloha:
11263_xhrot01.zip [119,65 kB]
Oponentura:
40932_xklit10.pdf [328,61 kB]
Hodnocení vedoucího:
50841_qvebj00.pdf [362,32 kB]

Údaje ze systému InSIS

Identifikátor:
https://insis.vse.cz/zp/50841/podrobnosti