Peer-Driven Insights

Threat & Vulnerability Management

About this topic

Threat and vulnerability management refers to the identification, assessment, and remediation of potential weaknesses in systems and networks. Proactive management reduces security risks and strengthens organizational defenses.

Featured One-Minute Insights

Sept 2024

How are U.S. CISOs Addressing Liability Risk?

New regulations taking effect in the U.S. mean that cybersecurity leaders could face legal liability in the event of an incident. What strategies are they using to protect themselves?

Active Ambassadors in This Topic

Rathik Pathak

JM Financial Services Ltd

Travel and Hospitality, 1k - 5k

India

View All Community Ambassadors

Community Posts

Was the FBI action on Microsoft exchange servers justified in your opinion?

Read More Comments

Has your company made you feel comfortable about the prospect of returning to the office?

Yes - My company has been clear with the back to office plan85%

No - Messaging around return to the office has been confusing and disjointed14%

Does implementing Zero Trust mean sacrificing usability?

Read More Comments

Overall, was Biden’s executive order a net-positive for the cybersecurity industry?

Read More Comments

Can organizations defend against ransomware with perimeter security alone?

Yes55%

No43%

Other (Share below)

View Results

Would you hire someone who's experienced a major security breach?

Read More Comments

What was your reaction to Allen Gwinn’s article on industry best practices?
(https://thehill.com/opinion/technology/553891-our-cybersecurity-industry-best-practices-keep-allowing-breaches?rl=1)

Read More Comments

Will we ever see an end to ransomware attacks?

Read More Comments

What were your biggest takeaways from the Executive Order on Improving the Nation’s Cybersecurity? (https://www.whitehouse.gov/briefing-room/presidential-actions/2021/05/12/executive-order-on-improving-the-nations-cybersecurity/)

Read More Comments

Should there be federal ordinances in place for cybersecurity threats where the affected organization is billed for the shutdown?

Read More Comments

Which of the following vulnerability management services, if any, do you use at your organization?

HackerOne16%

Bugcrowd39%

Synack16%

Intigriti4%

We're not using a bug bounty platform right now.20%

Other (please comment below!)3%

View Results

Would you ever be comfortable with the government taking a direct action to address vulnerabilities in your networks?

Read More Comments

If there is significant malicious activity occurring on private networks, does the government have an obligation to intervene?

Read More Comments

Is there such a thing as having too many security tools?

Read More Comments

Has the success of SaaS and cloud made organizations lazy when it comes to security?

Read More Comments

Why does DNS security feel like a never-ending story?

Read More Comments

About this topic

Featured One-Minute Insights

How are U.S. CISOs Addressing Liability Risk?

Active Ambassadors in This Topic

Rathik Pathak

Community Posts

Was the FBI action on Microsoft exchange servers justified in your opinion?

Has your company made you feel comfortable about the prospect of returning to the office?

Does implementing Zero Trust mean sacrificing usability?

Overall, was Biden’s executive order a net-positive for the cybersecurity industry?

Can organizations defend against ransomware with perimeter security alone?

Would you hire someone who's experienced a major security breach?

What was your reaction to Allen Gwinn’s article on industry best practices?(https://thehill.com/opinion/technology/553891-our-cybersecurity-industry-best-practices-keep-allowing-breaches?rl=1)

Will we ever see an end to ransomware attacks?

What were your biggest takeaways from the Executive Order on Improving the Nation’s Cybersecurity? (https://www.whitehouse.gov/briefing-room/presidential-actions/2021/05/12/executive-order-on-improving-the-nations-cybersecurity/)

Should there be federal ordinances in place for cybersecurity threats where the affected organization is billed for the shutdown?

Which of the following vulnerability management services, if any, do you use at your organization?

Would you ever be comfortable with the government taking a direct action to address vulnerabilities in your networks?

If there is significant malicious activity occurring on private networks, does the government have an obligation to intervene?

Is there such a thing as having too many security tools?

Has the success of SaaS and cloud made organizations lazy when it comes to security?

Why does DNS security feel like a never-ending story?

What was your reaction to Allen Gwinn’s article on industry best practices?
(https://thehill.com/opinion/technology/553891-our-cybersecurity-industry-best-practices-keep-allowing-breaches?rl=1)