Security Advisory Ingestion and Notification System


The Duke University IT Security Office (ITSO) utilizes automated scanning tools and various sources of security advisories, such as vendor websites, mailing lists, and RSS feeds, to monitor the latest security updates and patches for the systems and applications in use at Duke.

A team of students will work with the ITSO to design and implement an automated system that ingests security advisories for systems and applications inuse at Duke into a platform for review and prioritization of automated notifications to users and administrators. The project aims to improve the efficiency and effectiveness of the security advisory management process, enhance the security posture and compliance of Duke's systems and applications, and support the decision-making and prioritization of security resources and actions.