Implement a Risk-Based Approach to Vulnerability Management

Published: 21 August 2018 ID: G00356414

Analyst(s): Prateek Bhajanka | Craig Lawson

Purchase this Document

Price: $195.00 USD (PAGES: 17)

To purchase this document, you will need to register or sign in above.

Summary

A vulnerability is only as bad as the threat exploiting it and the impact on the organization. Security and risk management leaders should rate vulnerabilities on the basis of risk in order to improve vulnerability management program effectiveness.

Introduction
Analysis
- Implement Vulnerability Management as a Program That Involves Discovery, Prioritization and Then Treatment
  - Don’t Bring Superstition to a Fact Fight
  - Zero Day, a Problem or Not?
  - The Vulnerability Landscape
- Taking a Risk-Based Approach, Correlate Asset Value, Severity of Vulnerabilities and Threat Actor
- Use Tools to Automate Vulnerability Treatment Prioritization
- Use a Risk-Based Approach to Employ Mitigating Controls to Reduce the Attack Surface When You Are Unable to Patch Vulnerabilities
Gartner Recommended Reading

© 2018 Gartner, Inc. and/or its Affiliates. All Rights Reserved. Reproduction and distribution of this publication in any form without prior written permission is forbidden. The information contained herein has been obtained from sources believed to be reliable. Gartner disclaims all warranties as to the accuracy, completeness or adequacy of such information. Although Gartners research may discuss legal issues related to the information technology business, Gartner does not provide legal advice or services and its research should not be construed or used as such. Gartner shall have no liability for errors, omissions or inadequacies in the information contained herein or for interpretations thereof. The opinions expressed herein are subject to change without notice.

Implement a Risk-Based Approach to Vulnerability Management

Analyst(s): Prateek Bhajanka | Craig Lawson

Purchase this Document

Summary

Table of Contents

Become a Client

Become a Client

Become a Client

Why Gartner

Already have a Gartner account?

Purchase this Document

Summary

Table of Contents

Become a Client

Become a Client

Become a Client

Why Gartner

Manage Finance Talent Supply & Demand

Creating a Culture That Performs

Gartner Top 10 Strategic Technology Trends for 2018

Managing R&D Portfolios

Speed Up Legal Reviews

Should You Build or Buy a Customer Data Platform?

Gartner Predictions for the Future of Supply Chain Operations in 2018

Effortless Experience Explained

To the Point: Lifting the Fog Around AI and Advanced Analytics in Healthcare

Gain an essential edge with independent, objective, accurate and rigorously researched insights drawn from over 1,900+ analysts and 380,000 client interactions — including 130,000+ executive interactions — each year.

Improve performance, reduce risk and optimize return on your investments through our combination of research insight, benchmarking data, problem-solving methodologies and hands-on experience.

Master your role, transform your business and tap into an unsurpassed peer network through our world-leading conference series.

View Our Event Calendar

ReimagineHR

Gartner Security & Risk Management Summit 2018

Gartner Digital Marketing Conference 2018

Supply Chain Executive Conference

Tech Growth & Innovation Conference

Your Job as CIO Is Changing. Here's How to Master the New One.

6 Ways Compliance Can Build Data Analytics Skills

Lead Culture Change

Make it Easier for Customers to Buy

6 Ways the Workplace Will Change in the Next 10 Years

Feed your business — not the newsfeed

CIOs Must Transform into Digital Leaders

Understand the continuous evolution of the B2B buying journey