Skip to main content

Cybersecurity Shared Services Program

Justice Vulnerability Management Service (JVMS)

Inquire about services

The Department of Justice (DOJ) offers the Justice Vulnerability Management Service (JVMS), a comprehensive suite of vulnerability scanning services designed to help federal agencies like yours detect vulnerabilities, understand their nature, and take appropriate action to remediate them. Leveraging the robust Qualys platform, our service is designed to detect, manage, and respond to system vulnerabilities efficiently. Strengthen and streamline your agency's security posture with JVMS.  

Features: 

  • DOJ full administers the setup, management, and ongoing support of your Qualys tenant, including onboarding, service changes, and configuration management 

  • Complete credentialed scans at the application, middleware, and endpoint layers

  • Non-credentialed scans of Web applications and external webpages if required

  • Identification of vulnerabilities such as missing patches, misconfigurations, weak system passwords, unsupported software, and insecure network services

  • Automated compliance scanning to analyze and report on security configurations using Security Technical Implementation Guides (STIGs)

  • Continuous vulnerability discovery and assessment through crowdsourced vulnerability disclosure

  • Expert analysis and reporting, including graphical representations of vulnerabilities for better decision-making

  • Two service levels: ongoing vulnerability management and ad hoc vulnerability assessment 

Benefits: 

  • Proactive identification of vulnerabilities before they can be exploited by malicious actors

  • Customized scanning to meet your agency's specific needs and security requirements

  • Increased visibility into your agency's security posture, enabling better decision making and resource allocation

  • Expert guidance on remediation strategies and best practices to improve your overall security posture

  • Continuous monitoring and assessment to stay ahead of emerging threats and vulnerabilities

  • Enhanced compliance with federal cybersecurity standards and guidelines

  • Seamless integration with your existing security infrastructure, minimizing disruptions

  • A collaborative approach to vulnerability management, ensuring that your agency has the support and expertise needed to address identified vulnerabilities effectively 

 

Don't leave your federal agency's cybersecurity to chance! Contact the DOJ today to learn more about how our vulnerability scanning services can help you fortify your defenses and protect your critical assets. 

Updated March 3, 2025