Back to Main Navigation

PREDICT EXPLOITS

REDUCE COSTS

PREDICTION FOR THE CLOUD

ADVANCED CAPABILITIES

Back to Main Navigation

Resources

Predictive Threat Assessment Sign Up

Watch Now

PR1ORITY Product Demo
Back to Main Navigation

About CYR3CON

Come Join Us

CYR3CON is always looking for top talent to join our team.
View Openings
Back to Main Navigation

Take the next step to be in the know, now.

Complete the form and a member of the CYR3CON team will contact you shortly to discuss your cyber security needs.

Contact Form

Blog

Part 2: The Intersection of Risk Management and Vulnerability Management

Posted by Paulo Shakarian on Nov 16, 2020 7:25:33 PM

Today we continue our discussion on the intersection of risk assessment and vulnerability management.

In this video, we focus on item 4 of NIST’s risk assessment process: quantifying the likelihood of a threat occurring – or in the context of vulnerability management, the likelihood of an exploit surfacing. 

The NIST CVSS scoring is not designed to be predictive of future threat actions, and this is well-known in the vulnerability management community.  We have seen three approaches that vulnerability management teams take to assessing the likelihood of exploitation: 

  1. Threat levels 
  2. Weighting 
  3. Machine learning 

In this video, we discuss all three and then review how CYR3CON® PR1ORITY employs machine learning to address this problem. 

Risk Management and Vulnerability Management

 

CYR3CON’s CyRating® - available in our PR1ORITY product - allows vulnerability management teams to address problems around threat identification and computation of likelihood of threat at scale for the enterprise.

Let the CYR3CON team identify vulnerabilities your teams may be overlooking with our Predictive Threat Assessment

 

 

Topics: Cybersecurity, Risk Management, Vulnerability Management