TVM Lifecycle Overview

Asset Identification and Classification (CSF: ID.AM)Threat Intelligence Integration (CSF: ID.RA-2)Vulnerability Detection and Assessment (SP 800-40r4 / SP 800-53 RA-5)Risk Analysis and Prioritisation (SP 800-30r1)Patch and Remediation Management (SP 800-40r4)Penetration Testing and Technical Security Assessments (SP 800-115)Reporting and CommunicationMetrics and Monitoring
PreviousScopeNextAsset Identification and Classification (CSF: ID.AM)