What is IT Vulnerability Assessment?