How do you respond to zero-day vulnerabilities?

Threat & Vulnerability ManagementThreat Intelligence & Incident Response
213 viewscircle icon3 Upvotescircle icon2 Comments
Sort by:
Director Of Information Technology in Healthcare and Biotech3 years ago

As soon as we become aware of the vulnerabilities. Most of the time adding patches and security updates. 

Vice President Information Technology in Finance (non-banking)3 years ago

Micro segmentation is relatively best way.

Content you might like

Is anyone going to ICCWS (International Conference on Cyber Warfare and Security)?

Yes53%

No47%

Have you removed PII or other sensitive data from the products/services at your org that include Log4j?

Yes53%

Not yet – we’re working on it38%

No7%

I don’t know…1%

View Results

Apart from applying the patches just released, what other mitigation tactics are you using to address the zero-day SharePoint vulnerabilities impacting on-premises servers?

Our IT department is refreshing our SLAs and KPIs for Incident Management.  I would like to know who is a recognized authority on industry averages for IT Service Management processes for the service desk?  Below are examples of what I am looking for an industry average on. P1 95% resolved within 4 elapsed hours P2 90% resolved within 8 service hours P3 85% resolved within 3-5 days P4 85% resolved within 28 days

I'd like to better understand industry standards for the number of P1 and P2 incidents for a retail company. Would any of you know where I could find these standards?