Vulnerability Assessment Plus
(VA+) Training

3B Data Security have worked with IASME and The Cyber Scheme to develop an engaging and in-depth training course aimed at future Cyber Essentials Plus assessors and those interested in learning more about vulnerability assessments.

The Vulnerability Assessment Plus (VA+) training course is designed to provide delegates with an in-depth understanding of vulnerability assessments, how to quantify and measure risks related to vulnerabilities, identify both internal and external vulnerabilities, and how to report on discovered vulnerabilities.

The VA+ training course will enable delegates to pass the ISAME VA+ exam as awarded by The Cyber Scheme

The VA+ exam has been developed by the NCSC and IASME and is a requirement for all Cyber Essentials Plus (CE+) assessors that do not have a Lead Assessor qualification.

• Provide an overview of the vulnerability assessment process.
• Learn about tools used during the vulnerability assessment process
• Understand the underlying concepts of TCP/IP, Ports and Protocols.
• Apply critical thinking to solve problems encountered during an assessment.

• Understand Information security in the corporate world.
• Understand the laws and regulations involved with vulnerability assessing.
• Understand quantifying and measuring risks associated with vulnerabilities.
• Understand how to find internal and external vulnerabilities.
• Understand how to test hardening measures for malware.
• Report and explain vulnerabilities found throughout a project.

Our VA+ training course instructor is a highly experienced Penetration Tester and Information Security Management Consultant, and has worked in the Information Security industry for over 15 years.

They have held various CREST certifications including Certified Infrastructure Tester, Certified Application Tester and Registered Intrusion Analyst.

Having undertaken the exam process for VA+ themselves, our instructor is well-placed to give you advice on preparing for the examination.