Where is vulnerability and asset data expiration configured in the system?

In Tenable Security Center, vulnerability and asset data expiration is specifically configured in the "System > Configuration > Data Expiration" section. This location allows administrators to set parameters related to the lifecycle of collected data, determining how long the vulnerability data and asset records are retained within the system before they are considered stale and eventually removed.

Properly managing data expiration is critical for maintaining an efficient and effective vulnerability management process, as it helps in ensuring that only relevant and up-to-date information is available for analysis and decision making. By having this configuration in a dedicated section, it centralizes the control and management of data retention policies, making it easier for administrators to oversee and adjust data lifecycles as necessary for compliance and operational efficiency.

The other options relate to different functionalities within the Security Center. For example, asset management focuses on the organization and monitoring of assets themselves rather than the data expiration policies, while vulnerability reporting deals with how vulnerabilities are analyzed and reported rather than how long they are stored. The tools and settings mentioned in the remaining choices do not pertain specifically to data expiration configurations.