2.7 Vulnerability Management - The ability of the TRE operator to identify, assess, report on, manage and remediate technical vulnerabilities across endpoints, workloads, and systems. Security patching pre-emptively fixes vulnerabilities within the system usually automatically utilising software vendor issued updates. Patching may also be triggered by the vulnerability scanning or security testing process. One or more vulnerability management applications serve the processes.