Objective:
- Students will analyze common methods to manage vulnerabilities.
Standards:
CompTIA Security+ SYO-701 Objective:
4.3 – Explain various activities associated with vulnerability management
- Analysis
- Confirmation
- False positive
- False negative
- Prioritize
- Common Vulnerability Scoring System (CVSS)
- Common Vulnerability Enumeration (CVE)
- Vulnerability classification
- Exposure factor
- Environmental variables
- Industry/organizational impact
- Risk tolerance
- Confirmation
- Vulnerability response and remediation
- Patching
- Insurance
- Segmentation
- Compensating controls
- Exceptions and exemptions
- Validation of remediation
- Rescanning
- Audit
- Verification
- Reporting
Guiding Question:
- What are some common methods to identify vulnerabilities?
Resources:
Lesson 4.3.2 – Vulnerability Management.pptx Presentation and 4.3.2 – Vulnerability Management – Guided Notes – Fall 2025 Form available on Google Classroom
Assignment:
- Read through the 4.3.2 – Vulnerability Management.pptx presentation in today’s class.
- Complete the 4.3.2 – Vulnerability Management – Guided Notes – Fall 2025 Form using the materials provided.
Assigned: October 27th, 2025
Teacher Pacing Due Date: October 28th, 2025