This examines and protects against different sources that could provide a weakness, vulnerability or way into an organization's digital or physical assets. It includes patch management, intrusion detection, vulnerability scanning and penetration testing.