While there is pressure on security teams to have a
Vulnerability Assessment and Remediation Program and thus occasional
vulnerability scans, many systems are scanned as infrequently as once a
year. Experts agree that it is now necessary to run vulnerability
scanning tools on a weekly or more frequent basis.