Mind Your Vulnerability Gaps: Risk-based Vulnerability Management Approach – ISACA Tech Talk
Event submitted on Saturday, October 2nd 2021, approved by Content Team ✓
This event has been tagged as follows:
Because there are so many elements to consider, organizations are trying to prioritize vulnerability mitigation. It is unclear how to manage vulnerabilities discovered by multiple scanners, third-party vendors, pentest and red teaming reports, official vendors, and so on. Patches, on the other hand, are not always the solution to numerous vulnerabilities. The majority of businesses use severity/threat-based vulnerability management and are ignorant of additional criteria to consider in the risk-based vulnerability management strategy.
Conference Event Summary
The following description was either submitted by the Conference Organizer on Saturday, October 2nd 2021, or created by us.
Talk Session Topic: Mind Your Vulnerability Gaps: Risk-based Vulnerability Management Approach
Speaker: Chintan Gurjar
Designation: Security Engineering Manager
Location: United Kingdom
Description: Organizations are struggling to prioritize vulnerability remediation as there are plenty of factors to consider. It is unclear how to manage vulnerabilities from various scanners, third-parties, pentest and red teaming reports, official vendors, etc. On the other hand, patches are often the answer to many vulnerabilities, which is not always the case. Most companies follow severity/threat-based vulnerability management and are unaware of other criteria to consider in the risk-based vulnerability management approach. Organizations also focus on what they know, but how about assets they are unaware of, hanging on the Internet, untested? In this session, Chintan is going to cover some essential elements of a mature vulnerability management program.