Episode Thumbnail
Episode 7  |  53:49 min

A Chronological Journey Through Risk-Based Vuln Management

Episode 7  |  53:49 min  |  07.29.2020

A Chronological Journey Through Risk-Based Vuln Management

00:00
00:00
This is a podcast episode titled, A Chronological Journey Through Risk-Based Vuln Management. The summary for this episode is: Picking up where we left off on the history of vulnerability management, Ed Bellis walks us through the history of risk-based vulnerability management (RBVM) to current times and the near future.
Takeaway 1 | 00:31 MIN
Warning: A Lot Of The Sources For This Podcast Are Gated
Takeaway 2 | 01:56 MIN
A Definition of Risk-Based Vulnerability Management
Takeaway 3 | 05:59 MIN
2005: Vulnerability Scanners Start to Become Vulnerability Management
Takeaway 4 | 05:10 MIN
2010: SCAP v1.0 Lays Foundation For Automating Vuln Management
Takeaway 5 | 02:28 MIN
Ed and Jeff Start Kenna Security
Takeaway 6 | 01:02 MIN
Bellis' Stages of Vulnerability Management Pain
Takeaway 7 | 02:21 MIN
2011: Anton Lays Out The Challenge of Prioritization
Takeaway 8 | 03:46 MIN
2010 - 2015: Collecting ALL THE DATA
Takeaway 9 | 01:06 MIN
Ed Begins Automating Using SCAP
Takeaway 10 | 01:45 MIN
2015: Anton and Augusto Lay Out a Framework for VM
Takeaway 11 | 02:00 MIN
2016: Oliver Lays Out Different POVs For Prioritization
Takeaway 12 | 01:32 MIN
Adam Shostack, Threat Modelling, and Star Wars
Takeaway 13 | 01:35 MIN
Targets of Opportunity vs. Targeted Attacks
Takeaway 14 | 03:51 MIN
2018: The Business Context For Cyber Risk
Takeaway 15 | 04:28 MIN
2018: Theory > Implementation > Measurement
Takeaway 16 | 04:37 MIN
2019: Measuring the Enterprise Vulnerability Landscape and Patch Rates
Takeaway 17 | 02:57 MIN
Performance Factors That Correlate To RBVM Success
Takeaway 18 | 01:03 MIN
Exploit Prediction Scoring System v1.0
Takeaway 19 | 03:21 MIN
2020: Measuring Risk of The Assets Themselves
Takeaway 20 | 01:42 MIN
Where We Are Today and What's Next