dcsimg

Top Barriers to Effective Vulnerability Risk Management

  • Top Barriers to Effective Vulnerability Risk Management-

    Barrier #5 – Security Expertise Shortage

    Unfortunately, there is currently a lack of expert intelligence in the IT security community. Security expertise is specialized, expensive, and requires constant infusions of knowledge, information, and perspective from external sources.

    Talented security engineers are difficult to hire and almost impossible to retain over time. Organizations need to groom a rare bread of security intelligence experts or tap external resources to share their knowledge.

1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12

Top Barriers to Effective Vulnerability Risk Management

  • 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12
  • Top Barriers to Effective Vulnerability Risk Management-7

    Barrier #5 – Security Expertise Shortage

    Unfortunately, there is currently a lack of expert intelligence in the IT security community. Security expertise is specialized, expensive, and requires constant infusions of knowledge, information, and perspective from external sources.

    Talented security engineers are difficult to hire and almost impossible to retain over time. Organizations need to groom a rare bread of security intelligence experts or tap external resources to share their knowledge.

When it comes to the effectiveness of traditional vulnerability risk management programs, the challenges are often rooted in the process itself. Simply put, there are many manual steps (and often missteps) – from vulnerability scanning and detection to verification, impact analysis, and remediation – all of which can consume up to 40 percent of the IT organization's resources.

Given the labor-intensive list of to dos, many IT organizations use vulnerability management tools merely as a means to help document system compliance with industry or government regulations. Vulnerability management has become a "one-and-done" task, contributing to a less than effective outcome, as new technologies – and threats – are constantly being introduced into the environment.

NopSec CTO Michelangelo Sidagni explores how the manual aspects of vulnerability risk management cause broader challenges that can overwhelm IT departments and cripple their remediation efforts.