Packet Pushers - Fat Pipe

The most popular shows from the Packet Pushers Podcast Network in one feed. 1-The Weekly Show (network engineering). 2-Priority Queue (even more network engineering). 3-Datanauts (the full IT stack including cloud). 4-Network Break (IT news and analysis from the week). 5-Briefings In Brief (interesting vendor stories in 15 minutes or less).

https://packetpushers.net

subscribe
share



 

Datanauts 167: Patch Now Or Later? The Delicate Art Of Vulnerability Management


Somewhere in your network, there’s at least one exploitable vulnerability. Maybe it’s a really bad one. Maybe it’s not that bad.
Do you know what the vulnerability is? Do you have a way to explain to the business the risk it represents? Do you have a strategy to fix it or otherwise mitigate the risk?
Climb aboard with the Datanauts as we fly the good ship Vulnerability Management to Planet Security on today’s episode.
Our guest is Zoë Rose, an ethical hacker and cyber security consultant.
Zoë, Chris, and Ethan discuss:

* Setting a baseline on what we mean by vulnerabilities
* The value of the CVSS
* Different kinds of tools for finding vulnerabilities
* Assigning risk levels in your organization
* How risk levels should influence patching
* The use of compensating controls
* Whether it’s worth patching ephemeral containers
* More

Sponsor: Netrounds
Netrounds software performs active testing and monitoring to ensure your business-critical applications and services are running as expected. Get real-time insights for testing, troubleshooting, and SLA monitoring. Find out more at netrounds.com/packetpushers.
Show Links:
Zoë Rose on Twitter
Rose Security And Intelligence
Common Vulnerability Scoring System – Wikipedia


share





 2019-07-01  53m