Reassessing 50,000 Vulnerabilities: Insights from SSVC Evaluations in Japan's Largest Telco

Overview

Explore a conference talk that delves into the challenges of managing vulnerabilities in large-scale IT infrastructure. Learn how Japan's largest telecom carrier developed a practical Stakeholder-Specific Vulnerability Categorization (SSVC) method to prioritize and efficiently respond to vulnerabilities. Discover the results of applying this SSVC method to over 50,000 vulnerabilities, revealing that only 8% required immediate attention. Gain insights into the issues faced with traditional CVSS scoring, the benefits of SSVC, and how to implement this method for more effective vulnerability management in your own organization.

Syllabus

Ground Truth, Tue, Aug 6, 20:30 - Tue, Aug 6, CDT

Taught by

BSidesLV

Reviews

Start your review of Reassessing 50,000 Vulnerabilities: Insights from SSVC Evaluations in Japan's Largest Telco

3000+ Courses from California Community Colleges

Most common

Popular subjects

Popular courses

Reassessing 50,000 Vulnerabilities: Insights from SSVC Evaluations in Japan's Largest Telco

Overview

Syllabus

Taught by

Reviews

3000+ Courses from California Community Colleges

Taught by

CVSS v4 - A Better Version of an Imperfect Solution for Vulnerability Scoring

Defending Critical Infrastructure: Deep Enumeration and Proprietary Protocol Analysis

Demystifying SBOMs: Strengthening Cybersecurity Defenses

Threat Modeling at Scale: More Than Shifting Left

Never Stop Learning.