CIO OPINION
Those that are responsible for patching and fixing software vulnerabilities are rarely involved in the technology selection process .
Chris Jacob , Global Vice President , Threat Intelligence Engineers , ThreatQuotient
How threat intelligence can improve vulnerability management outcomes
Chris Jacob , Global Vice President , Threat Intelligence Engineers , ThreatQuotient , says an ever-evolving threat landscape needs a structured and efficient risk-based process for managing vulnerabilities .
It might surprise you to know that more than 70 new vulnerabilities are published every day . And , despite their risk-reducing value in helping SOC teams address these , vulnerability management solutions have drawbacks .
Often , they only provide a snapshot of an organization ’ s vulnerabilities at a point in time . In fact , owing to their nature , vulnerabilities identified today may not exist tomorrow or they may appear and disappear intermittently – leaving security teams scrambling to understand not only what the risk is but how it affects them and where they should start first with any remediation .
Often vulnerability management solutions struggle to support SOC teams effectively , meaning they face an uphill battle with fragmented tools and data silos .
This creates major challenges around alert fatigue and overloaded SOC teams who , despite all the tools available to them , end up undertaking manual investigations to determine the best response .
The problems with vulnerability management are complex and wide ranging , from technology to policy and governance . With the modern enterprise evolving to become more technologically distributed and cloudaligned , the challenge is becoming even more complex . www . intelligentcio . com INTELLIGENTCIO LATAM INTELLIGENTCIO LATAM 39