Overview
Learn how to build and maintain a scalable vulnerability management program for effective risk management in this 49-minute conference talk. Explore key components including asset prioritization, scope definition, stakeholder engagement, and database architecture. Discover best practices for vulnerability scanning, severity rating, remediation, and decommissioning. Address challenges such as false positives and exceptions, while implementing robust reporting, auditing, and continuous maintenance processes. Gain insights into authentication reports and overcome common obstacles to create a comprehensive vulnerability management strategy.
Syllabus
Introduction
Vulnerability Management
Prioritize Assets
Complete Scope
Stakeholders
Architecture
Database
Dashboard
Vulnerability Scanning
Vulnerability Severity Rating
Vulnerability Remediation
Vulnerability Decommission
False Positives
False Positive Examples
Exceptions Process
Reporting Findings
Audit
Continuous Maintenance
Authentication Reports
Challenges
Summary
Questions