Incident investigation reports, such as the Verizon Data Breach Investigation report, continually show that over 75% of successful threats exploit known vulnerabilities. An equally high percentage of enterprises report they have deployed vulnerability assessment and management processes and technologies ' yet attackers continue to find and exploit vulnerabilities before enterprises find them and mitigate or shield the vulnerability from attack. Something is wrong here.
A common problem has been that enterprise vulnerability assessment processes have been delivering huge floods of vulnerability data with very little useful, prioritized guidance. Threats and business demands change constantly and the actual risk of a missing patch or misconfigured system depends on both the presence of active threats and the business-relevance of a particular asset or system. In order to provide business value, vulnerability assessment processes and tools need to be upgraded to provide that guidance - while still meeting budget and staffing constraints.
This SANS What Works Webinar will detail the process the Senior Security Architect at a Healthcare services firm followed in increasing the effectiveness of their vulnerability management processes using Tenable SecurityCenter Continuous View, while actually reducing cost at the same time. SANS Director John Pescatore will interview the Senior Architect to detail his experience selecting and deploying the Tenable platform and go through lessons learned and future plans. Come hear 'What Works ' in increasing both the effectiveness and efficiency of vulnerability assessment reporting and management.
The user interviewed for this case study has requested anonymity to maintain confidentiality. The SANS What Works program can help our security community at large make more informed decisions by encouraging seasoned professionals to share their stories without revealing the name of the organization.