Amethyst Cyber Group

Managed Vulnerability Scanning

Continuous visibility of exposed and exploitable weaknesses.

Managed vulnerability scanning provides scheduled discovery, authenticated scanning where appropriate, triage, reporting, and remediation tracking so vulnerability management stays current between point-in-time tests.

Submit enquiry Download prerequisites

Service detail

Scanning that produces usable remediation priorities

Asset discovery

Confirm scoped hosts, cloud assets, domains, and networks before recurring scans begin.

Authenticated scanning

Use agreed credentials or agents where appropriate to improve coverage and reduce false confidence.

Triage and prioritisation

Review scanner output for exploitability, exposure, business context, known noise, and remediation urgency.

Reporting cadence

Provide regular reports, trend summaries, and urgent notifications for high-risk findings.

Remediation tracking

Track open findings, retest fixed issues, and highlight recurring root causes.

Escalation support

Escalate critical exposures with clear evidence, affected assets, and practical next steps.

What it is

Managed vulnerability scanning is an ongoing vulnerability management service rather than a one-off test. It uses scheduled scanning, authentication where appropriate, review of scanner output, and reporting that helps teams remediate consistently.

Who it is for

Useful for organisations with changing infrastructure, compliance reporting needs, limited internal vulnerability management capacity, or a requirement to monitor internet-facing and internal assets between penetration tests.

Key considerations

  • Scope and ownership of assets must stay current
  • Authenticated scans improve coverage
  • Critical findings need clear escalation routes
  • Recurring reporting supports trend analysis

Prerequisites

Prepare scope, scanning windows, and access

The prerequisite pack covers asset lists, authenticated scanning options, safe scan windows, allow-listing, cloud scope, notification routes, and remediation ownership.

Managed vulnerability scanning prerequisite pack

PDF checklist for assets, scan cadence, credentials, safe windows, and reporting contacts.

Download PDF

FAQ

Managed vulnerability scanning questions

How is this different from a penetration test?

Managed scanning is recurring vulnerability monitoring and triage. A penetration test is a deeper point-in-time assessment that manually validates exploitability and impact.

How often are scans run?

Cadence is agreed during scoping. Common options include monthly, quarterly, or more frequent scanning for high-change external, internal, cloud, or authenticated assets.

Can scans use credentials?

Yes. Authenticated scanning can improve coverage across servers, endpoints, applications, and cloud environments where suitable access can be provided safely.

How are critical findings handled?

Critical or actively exploitable findings should follow an agreed escalation route so technical owners can review and respond without waiting for routine reporting.

Can cloud and internal assets be included?

Yes. Scope can include external assets, internal networks, cloud environments, and authenticated assets, subject to access, authorisation, and safe scanning constraints.