When looking at relevance, need to know business value
Business critical vs testing lab
System role and alignment with mission
Web server for eCommerce site
How many rely on the system?
Attack parameters, source and destination investigative info, attacker history, direction, global situation, etc Value, popularity, role from the asset’s business owners Scan data, ports, unsafe applications, patch level, OS type TVI “Fusion”