Interactive Courses + DFIR NetWars Available During SANS Cyber Security Central in June. Save $300 thru 5/12.


To attend this webcast, login to your SANS Account or create your Account.

SANS 2020 Vulnerability Management Survey

  • Tuesday, November 10, 2020 at 1:00 PM EST (2020-11-10 18:00:00 UTC)
  • David Hazar


  • Anomali
  • Cisco Systems
  • Qualys
  • ThreatConnect

You can now attend the webcast using your mobile device!



This years Vulnerability Management Survey focuses on how organizations vulnerability programs are evolving and maturing in response to changing technology, architecture and design. It also explores how organizations are identifying vulnerabilities in their applications and non-traditional infrastructure. Additionally, the survey looks at how organizations are prioritizing vulnerabilities and what risk attributes they are using to prioritize or group work. Finally, the survey explores who is responsible for treating or remediating discovered vulnerabilities, and how mature the respondents feel they are at managing different types of vulnerabilities within different technology components, services and even third-parties or partners.

The survey will address key issues such as:

  • How organizations are discovering different types of vulnerabilities on different systems and within their applications along with discovery frequencies
  • What remediation processes are operational and the level of maturity
  • How vulnerabilities are prioritized and whether deadlines are established
  • Who in the organization is responsible for the different processes related to vulnerability management

Register today to be among the first to receive the associated whitepaper written by SANS analyst, author, and instructor David Hazar.

Click here to register for a companion webcast, to be held at 1 PM ET on Wednesday, November 11, 2020, a panel discussion with survey author David Hazar and selected sponsors that digs more deeply into the survey results.

Speaker Bio

David Hazar

David is a security consultant based in Salt Lake City, Utah focused on vulnerability management, application security, cloud security, and DevOps. David has 20+ years of broad, deep technical experience gained from a wide variety of IT functions held throughout his career, including: Developer, Server Admin, Network Admin, Domain Admin, Telephony Admin, Database Admin/Developer, Security Engineer, Risk Manager, and AppSec Engineer. David is a co-author and instructor for MGT516: Managing Security Vulnerabilities: Enterprise and Cloud, an instructor for and contributor to SEC540: Cloud Security and DevOps Automation, and has also developed and led technical security training initiatives at many of the companies for which he has worked. Read more about David here.

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.