For the first time in its 60-year history, the OECD offered policy guidelines for risk reduction through vulnerability management. Today’s columnists, Rayna Stamboliyska and Tarah Wheeler offer some insights on how the industry will respond. Credit: OECD/Victor Tonelli

For the first time in its history this past February, the Organization for Economic Cooperation and Development (OECD) offered policy guidelines for digital risk reduction through vulnerability management. We were asked to contribute comments and expertise on how governments and private companies can handle cybersecurity vulnerabilities. Those efforts are part of a stronger dynamic: We see a massive increase in intergovernmental conversations on vulnerability non-proliferation.

We are surprised and gratified to see this sensitive topic in the public sphere so quickly. Organizations should anticipate having to treat these new vulnerability management guidelines as seriously as they treat GDPR. New regulations are on the way, and preparing for them means less “hair-on-fire” running up to deadlines. 

Please register to continue.

Already registered? Log in.

Once you register, you'll receive:

  • News analysis

    The context and insight you need to stay abreast of the most important developments in cybersecurity. CISO and practitioner perspectives; strategy and tactics; solutions and innovation; policy and regulation.

  • Archives

    Unlimited access to nearly 20 years of SC Media industry analysis and news-you-can-use.

  • Daily Newswire

    SC Media’s essential morning briefing for cybersecurity professionals.

  • Learning Express

    One-click access to our extensive program of virtual events, with convenient calendar reminders and ability to earn CISSP credits.