(ISC)2 CT Chapter Meeting August

Register to attend this very informative meeting.

Managing Business Risk Using Vulnerability Scanning

By Diane Reilly and Frederick Scholl

Vulnerability scanning is a common method to help manage risks, but it is hampered by the challenge to make it business relevant.  In this presentation we will show how to connect “Tier 2” mission and business process information to “Tier 1” systems and network vulnerabilities.  Tier 2 information is collected and organized using Obashi templates and then stored in the scanning tool’s database.  Using this method, security practitioners can rank vulnerabilities by business impact, thereby focusing limited resources on smart remediation.  Reporting is also easier to understand by business leaders.  A demonstration will be included using SAINT and Obashi against a model business organization.

Register Now!