Patent attributes
A method and system for policy driven vulnerability management of a network equipment of an enterprise. A plurality of routes delivers services to a plurality of end user devices through the system. A plurality of vulnerabilities associated with the end user device, and a plurality of policies associated with the plurality of vulnerabilities is identified. Remediation for the plurality of vulnerabilities is determined based on the plurality of policies. The plurality of policies is based on a cloud service selected from the end user device, a tenant, and a role associated with the end user device. A route corresponding to the plurality of policies and the cloud service is identified. The remediation of the vulnerabilities is performed by upgrading the plurality of vulnerabilities based on the plurality of policies and the cloud service is provided to the end user device via the route based on the plurality of policies.