Performing Vulnerability Scanning with Nessus When to Use - Conducting initial vulnerability assessment during the reconnaissance phase of a penetration test - Performing periodic vulnerability scans to maintain compliance with PCI-DSS (requirement 11.2), HIPAA, or SOC 2 standards - Validating that remediation efforts have successfully addressed previously identified vulnerabilities - Establishing a baseline of known vulnerabilities before targeted manual exploitation - Auditing patch compliance and configuration drift across server and workstation fleets Do not use as a substitute for manual…