Vulnerability management

Beyond Subjectivity: Sharpening CVSS with Asset Context – Clayton Fields, Michael Assraf – ESW #208

November 25, 2020

Sponsored By

sponsor Visit https://securityweekly.com/vicarius for more information!

Vulnerability prioritization has traditionally relied on CVSS scores and other subjective measurements (e.g. asset tagging) that don’t factor in internal context. A new approach integrates asset context and application activity to derive rich, internal data.

This segment is sponsored by Vicarius.

Visit https://securityweekly.com/vicarius to learn more about them! Visit https://www.securityweekly.com/esw for all the latest episodes!

Full Episode Show Notes

Beyond Subjectivity: Sharpening CVSS with Asset Context

Blog post: https://www.vicarius.io/blog/beyond-subjectivity-sharpening-cvss-with-asset-context

Hosts

[caption id="attachment_210" align="alignleft" width="120"]Adrian Sanabria Adrian Sanabria - Senior Research Engineer[/caption] [caption id="attachment_210" align="alignleft" width="120"]Paul Asadoorian Paul Asadoorian - Founder & CTO[/caption]

Guests

[caption id="attachment_210" align="alignleft" width="120"]Clayton Fields Clayton Fields - Advisor [/caption] [caption id="attachment_210" align="alignleft" width="120"]Michael Assraf Michael Assraf - CEO & Co-Founder [/caption]

Announcements

  • Security Weekly, in partnership with CyberRisk Alliance, is excited to present Security Weekly Unlocked on December 10, 2020. This 1 day virtual event wraps up with the 15th anniversary edition of Paul’s Security Weekly live on Youtube! Visit https://securityweekly.com/unlocked to view the agenda and register for free!

[audio src="http://traffic.libsyn.com/sw-all/ESW_208_-_Clayton_Michael_Vicarius-0_converted.mp3"]
prestitial ad