Frequently asked Questions

See our list of common questions and concerns.  Feel free to contact us with any other questions that are not listed here. 

MCS FAQs

In summary:

– Vulnerability Assessment is a singular point in time assessment that helps identify as many vulnerabilities as possible, usually unauthenticated, through the use of automated tooling.

– Vulnerability Management is a process of recurring vulnerability assessments (generally monthly) where administrative credentials are provided to gain the best coverage of missing patches and misconfigurations. This service also includes access to our Client Vulnerability Dashboard to review findings, ask questions, get expert guidance for remediation and analytics such as mean time to remediation.

– Penetration Testing is a method of using automated and manual assessment techniques to identify vulnerabilities beyond what a typical vulnerability assessment or tool can handle by itself. For example, looking for logical flaws in a business’ web application.

Our service packages are designed to give you clear, actionable results and resources for remediation.

– Scope, objectives, and methodology of the test
– Summary and overview of findings and recommendations
– Technical details and evidence of each vulnerability
– Risk rating and severity of each vulnerability
– Remediation steps and best practices for fixing vulnerabilities
– Year-long access to Client Vulnerability Dashboard
– Year-long team access for questions, advice, and remediation guidance

This program encapsulates multiple service offerings to provide a comprehensive analysis of your entire online infrastructure.

Advanced Vulnerability Scanning: We configure and manage top-tier network vulnerability assessment tools to conduct thorough scans of your applications and systems, identifying potential security flaws and misconfigurations. Additional agent based scanning provides strong coverage for remote workers, rapid checks when critical new vulnerabilities are discovered, and a lighter network traffic load.

Expert Analysis: Our team manually reviews scan results, filtering out false positives to provide you with accurate, actionable data.

Regular Reporting: We deliver monthly scan reports accompanied by remediation guidance tailored to your needs.

Penetration Testing: Each year, we conduct a penetration test on your core network or application. Network tests may include external or internal assessments, while application tests cover web apps, thick clients, mobile apps, or APIs.

Cloud Security Configuration Review: For clients using AWS or Azure, we perform a basic cloud security configuration review to enhance your security posture and provide peace of mind.

Priority Support and Discounts: Enrolling in our vulnerability identification program gives you priority scheduling and discounted rates on additional penetration testing, cloud configuration, or vulnerability assessment services.

Client Vulnerability  Dashboard: Year long access to our Client Dashboard to review results and get expert remediation guidance. Track your analytics such as mean time to remediate, what assets are at the highest risk and much more.

Utilize our Client Vulnerability Dashboard to track remediation status, ask for guidance, or just collaborate within your own teams to get vulnerabilities resolved in the most efficient manner.

View MCS Portal Demo

Vulnerability Management is the ongoing scanning of your network to identify weaknesses and potential holes in your security.

Patch management is the process of applying updates to software and systems to fix security flaws, improve functionality, or enhance performance.

View Article: Why Patch Management Is Not Enough