The Evolution of Vulnerability Management Programs: Risky Biz Podcast Episode
Are you working to mature your vulnerability management program? Aaron Unterberger, Director of Sales Engineering at Nucleus, joined Patrick Gray recently on the Risky Biz podcast to discuss the evolution of vulnerability management programs. During the conversation, they touched on the path many organizations must take when elevating their vulnerability management program to the next level.
Podcast Highlights
In the podcast, Aaron and Patrick go over the typical stages of vulnerability management maturation and hit some other key points:
- The three stages many vulnerability management programs pass through: ad-hoc scanning, more deliberate and standardized scanning with a more complete asset inventory, and automated vulnerability management at scale.
- The reasons for implementing vulnerability scaling in the earliest phase, including compliance requirements and news coverage of breaches or security incidents.
- The importance of asset inventory to the success of a vulnerability management program.
- Distribution of exploited CVEs and how those priority vulnerabilities can be obscured by data volumes.
- How data unification is a requirement for vulnerability management programs to properly mature.
Aaron’s segment in the podcast begins at the 50:20 mark.