By Dr Sashank Dara, CTO, CISO & Cofounder at Seconize
Topic Summary:
Modern vulnerability management is a tedious, resource-consuming effort. This talk will provide practical advice on how to ace your vulnerability management programs, right from getting the policies in place, adopting mature methodologies, identifying risks, building automation for remediation, and adhering to compliance requirements.
All of them have "Risk Based Principles" at their core.
The session will cover:
1. Basics of Risk Based Vulnerability Management
2. Myths and Pitfalls of modern vulnerability management
3. Adopting mature practices with less resources
Some links to the References mentioned in the session:
1. Security Compliance Framework – SCF for the master list of controls and mappings - [ Ссылка ]
2. Prioritizing Vulnerabilities - [ Ссылка ]
3. Free Contextual Risk Scoring tool for CVEs – [ Ссылка ]
4. SANS Metrics and Maturity - [ Ссылка ]
Ещё видео!