Artwork
iconShare
 
Manage episode 418468815 series 2525086
Content provided by Dale Peterson, Dale Peterson: ICS Security Catalyst, and S4 Conference Chair. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Dale Peterson, Dale Peterson: ICS Security Catalyst, and S4 Conference Chair or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://staging.podcastplayer.com/legal.

Chris Hughes and Nikki Robinson recently wrote the book Effective Vulnerability Management. Dale and Chris discuss the topic and book including:

  • The definition and scope of vulnerabilities. It’s much more than coding errors that need patches.

  • Are ICS protocols lacking authentication “vulnerabilities”

  • The reality that most organizations have 100’s of thousands of unpatched vulnerabilities. Some statistics and will this change.

  • Ways to prioritize what vulnerabilities you address.

  • The SSVC decision tree approach that was introduced at S4 as Never, Next, Now

  • Tooling … vulnerability management, software configuration, ticketing, remediation.

  • And much more.

Links:

  continue reading

52 episodes