Research Article
Intelligent System for Automation of Security Audits (SIAAS)
@ARTICLE{10.4108/eetsis.3564, author={Jo\"{a}o Pedro Seara and Carlos Serr\"{a}o}, title={Intelligent System for Automation of Security Audits (SIAAS)}, journal={EAI Endorsed Transactions on Scalable Information Systems}, volume={11}, number={1}, publisher={EAI}, journal_a={SIS}, year={2023}, month={10}, keywords={cybersecurity, security auditing, vulnerability scanner, free open-source software (FOSS)}, doi={10.4108/eetsis.3564} }- João Pedro Seara
Carlos Serrão
Year: 2023
Intelligent System for Automation of Security Audits (SIAAS)
SIS
EAI
DOI: 10.4108/eetsis.3564
Abstract
Events related to cybersecurity failures have a high and growing financial, operational, and reputational impact, on organizations around the world. At the same time, there is a shortage of cybersecurity professionals. In addition, the specialization of professionals with the necessary skills in the area of cybersecurity is expensive and time-consuming. Taking these facts into consideration, this research has focused on the automation of cybersecurity processes, specifically those related to continuous vulnerability detection. To address this problem, a cybersecurity vulnerability scanner that is free to the community and requires no pre-expertise on the part of the operator, was developed. The artifact was tested by companies in the IT business, by systems engineers, most without cybersecurity background. The results demonstrated that the artifact was easy to install and that the reported results can be used by the operator in the context of an automatic and proactive securitization of the systems involved.
Copyright © 2023 J. P. Seara et al., licensed to EAI. This is an open access article distributed under the terms of the CC BY-NC-SA 4.0, which permits copying, redistributing, remixing, transformation, and building upon the material in any medium so long as the original work is properly cited.
