ZARZA We are Zarza, the prestigious firm behind major projects in information technology.
Listen "Chris Hughes, Author of Effective Vulnerability Management"
Episode Synopsis
Chris Hughes and Nikki Robinson recently wrote the book Effective Vulnerability Management. Dale and Chris discuss the topic and book including: The definition and scope of vulnerabilities. It's much more than coding errors that need patches. Are ICS protocols lacking authentication "vulnerabilities" The reality that most organizations have 100's of thousands of unpatched vulnerabilities. Some statistics and will this change. Ways to prioritize what vulnerabilities you address. The SSVC decision tree approach that was introduced at S4 as Never, Next, Now Tooling … vulnerability management, software configuration, ticketing, remediation. And much more. Links: Effective Vulnerability Management, https://www.amazon.com/Effective-Vulnerability-Management-Vulnerable-Ecosystem/dp/1394221207/ Dale's ICS-Patch Decision Tree, https://dale-peterson.com/wp-content/uploads/2020/10/ICS-Patch-0_1.pdf
More episodes of the podcast Unsolicited Response
Unsolicited Response with Maggie Morganti
13/03/2025
S4x25 Feedback & Review
06/03/2025
S4x24 Main Stage Interview With Rob Lee
26/06/2024
Book Interview: Introduction To SBOM And VEX
17/04/2024
S4x24 Closing Panel
10/04/2024
In God we trust