Applying Vulnerability Management to Zero Trust
Adopting Zero Trust1 Elo 2024

Applying Vulnerability Management to Zero Trust

Season 3, Episode 11: Vulnerability management is critical to any Zero Trust strategy, but you probably already know that. Fortra’s Tyler Reguly breaks down severity vs. risk.

Catch this episode on YouTube, Apple, Spotify, or Amazon. You can read the show notes here.

Every organization relies on some form of technology to run, and each tool you add increases the risk of vulnerabilities causing problems. If you don’t stay on top of patching, you increase the odds of a bad actor finding their way more easily within your network.

This week, we chat with Tyler Reguly, a senior manager of security research at Fortra, who shares insights from his 18 years in vulnerability management. Tyler discusses the importance of staying on top of patching to maintain a Zero Trust strategy, the differences between vulnerability and patch management, and emphasizes that the Common Vulnerability Scoring System (CVSS) measures severity, not risk.

We also briefly nerd out about the significance of groups like the Canadian Cyber Threat Exchange (CCTX) for knowledge sharing and collaboration in cybersecurity. And then, we wrap things up by exploring the efficacy of existing security policies and benchmarks, such as CIS and DISA STIGs, and the role of vendor relationships in maintaining effective security practices.

Hosted on Acast. See acast.com/privacy for more information.

Jaksot(58)

Adopting Zero Trust with J. R. Cunningham: The Moat Has Dried Up

Adopting Zero Trust with J. R. Cunningham: The Moat Has Dried Up

This week we chat with J. R. Cunningham, Chief Security Officer at Nuspire, and we dig into Zero Trust as a journey. Nuspire is a managed security service provider that provides support ranging from m...

20 Loka 202248min

Adopting Zero Trust With Maureen Rosado: Selling Zero Trust

Adopting Zero Trust With Maureen Rosado: Selling Zero Trust

This week we chat with Maureen Rosado, a Zero Trust Strategist for BT, who has an outstanding history of business development for enterprise companies like IBM and Microsoft. This week we break away f...

6 Loka 202249min

Adopting Zero Trust with Christine Owen: Searching For the Finish Line

Adopting Zero Trust with Christine Owen: Searching For the Finish Line

This week we chat with Christine Owen, Director at Guidehouse, and we dig into Zero Trust as an approach to harden your identity and access management strategy, her dislike of passwords, and phishing-...

22 Syys 202259min

Adopting Zero Trust with Lexmark’s Bryan Willett: Culture of Security

Adopting Zero Trust with Lexmark’s Bryan Willett: Culture of Security

This week we chat with Bryan Willett, Lexmark’s CISO, who has built a legacy over the past 25 years working for the global company. Starting from his early days as a firmware developer, transitioning ...

8 Syys 202249min

Adopting Zero Trust with Dom Glavach: Staffing Up

Adopting Zero Trust with Dom Glavach: Staffing Up

This week we chat with Dom Glavach, Chief Security Officer (CSO) of CyberSN (Cyber Security Network) and a security consultant, and we dig into Zero Trust as a journey, the delta between buzzwords and...

25 Elo 202241min

Adopting Zero Trust With Nicolas Chaillan: From Policy to DHS

Adopting Zero Trust With Nicolas Chaillan: From Policy to DHS

Nicolas Chaillan is an Entrepreneur who became a US citizen about six years ago, and immediately joined the DHS where he became the chief architect and special advisor for cyber, leading him to become...

11 Elo 202244min

Adopting Zero Trust with Ryan Alford: IoT Secured

Adopting Zero Trust with Ryan Alford: IoT Secured

This week we chat with Ryan Alford, Founder and CEO of Engineering Design Group (EDG), and we dig into how Zero Trust impacts the future of hardware, software, IoT, and access (both human and machine)...

27 Heinä 202247min

Adopting Zero Trust With Andrew Abel: Translating Zero Trust Into Business Concepts

Adopting Zero Trust With Andrew Abel: Translating Zero Trust Into Business Concepts

This week we chat with Andrew Abel, our defacto Zero Trust expert who is currently the EUC Cyber Security Strategy and Architecture Lead for an energy company out of Brisbane Australia.Andrew has been...

14 Heinä 202242min