Hello to all my cyber bros/gals! I am a jr security analyst tasked with coming up with a game plan to assess the security posture of our workstations (vulns/STIGs). I am here seeking advice, how would you approach this?

Here is a list of weekly tasks and reports I work on regarding workstations. Any advice on what more I could add to this list or improve upon would be greatly appreciated!

-ACAS weekly vulnerability scan reports and staying up to date with latest IAVMs.

Tools available to me: Nessus, Cortex, HBSS

advice analyst coming cyber cybersecurity game hello list posture reports scan security security analyst security posture vulnerability vulnerability scan vulns weekly work workstations