Nessus

Service Description

Nessus is a widely used vulnerability assessment tool developed by Tenable, designed to help organizations identify and fix security weaknesses across their networks and systems. It scans devices, operating systems, and applications for known vulnerabilities, misconfigurations, and compliance violations. Nessus supports a broad range of checks, including missing patches, default credentials, and dangerous software versions.

External Continuous Vulnerability Scanning Efforts

Security Domain

CIS Control 7 – Continuous Vulnerability Management
NIST CSF – Detect: Continuous Monitoring (DE.CM)
NIST 800-53 – Assessment, Authorization, and Monitoring

Vulnerability scanner reports are emailed to users weekly to review for potential risks and recommended remediations on external assets to further harden cybersecurity posture.

PSU Time Commitment

Upfont/Setup: Form completion time
Ongoing: N/A

How to get this service

Complete the Weekly Nessus scanning sign up form in the Strike Team Catalog

Point of Contact

NCLGISA Strike Team
Email: itstriketeam@nclgisa.org
Telephone: (919) 726-6508 (monitored 24/7)