Program: Vulnerability management: Finding and fixing fatal flaws Virtual Conference 2024

Tuesday, October 22, 2024
Introduction and Fireside Chat \| Navigating the Vulnerability Maze: Strategies for Effective Management in an Evolving Threat Landscape	Vulnerability management remains one of the most pressing challenges for cybersecurity professionals today. As the threat landscape evolves, organizations are inundated with vulnerabilities, making it increasingly difficult to prioritize and address the most critical issues. This session delves into the persistent problem of vulnerability overload, exploring: Why traditional approaches often fall short What innovative strategies can be employed to stay ahead of emerging threats. Tools, methodologies, and best practices that security teams need to streamline vulnerability management, reduce risk, and enhance overall resilience. Join us to learn how to transform your vulnerability management process into a proactive and efficient operation, capable of keeping pace with the ever-changing cybersecurity environment.	Paul Asadoorian - Eclypsium J. Wolfgang Goerlich
Breakout Session \| Compensating for unenriched CVEs	This session will explore the challenges posed by unenriched CVEs in the National Vulnerability Database (NVD), which has left over 18,000 CVEs without proper CPE identifiers since February 2024. These unenriched reports severely limit automated vulnerability management as they remain invisible to CPE-based searches. With contractors historically managing NVD enrichment and the backlog growing monthly, organizations relying on CVE-based vulnerability databases face significant gaps in visibility. We’ll discuss strategies to compensate for these gaps and the potential of alternative identifiers, like purl, in addressing these issues, particularly in the open-source ecosystem.	Zaira Pirzada - Hive Pro
Panel Discussion \| Vulnerability Management in the Headlines: Proactive Strategies to Stay Ahead of Cyber Threats	Recent headlines have underscored the critical importance of effective vulnerability management as cybercriminals continue to exploit weaknesses faster than ever before. In this panel discussion, cybersecurity experts will analyze: High-profile vulnerabilities that made the news and the lessons learned from these incidents. Evolving tactics of threat actors and the strategic approaches that organizations can adopt to stay ahead. From improved threat intelligence to enhanced patch management and proactive vulnerability assessments, this session will provide actionable insights to help you anticipate and counter emerging threats before they strike. Join us to gain a deeper understanding of how to protect your organization from becoming the next headline.	Paul Asadoorian - Eclypsium Ed Moore - Carnival Corp Matt Johansen - Reddit

Tuesday, October 22, 2024

Introduction and Fireside Chat | Navigating the Vulnerability Maze: Strategies for Effective Management in an Evolving Threat Landscape

Vulnerability management remains one of the most pressing challenges for cybersecurity professionals today. As the threat landscape evolves, organizations are inundated with vulnerabilities, making it increasingly difficult to prioritize and address the most critical issues. This session delves into the persistent problem of vulnerability overload, exploring:

Why traditional approaches often fall short
What innovative strategies can be employed to stay ahead of emerging threats.
Tools, methodologies, and best practices that security teams need to streamline vulnerability management, reduce risk, and enhance overall resilience.

Join us to learn how to transform your vulnerability management process into a proactive and efficient operation, capable of keeping pace with the ever-changing cybersecurity environment.

Paul Asadoorian - Eclypsium
J. Wolfgang Goerlich

Breakout Session | Compensating for unenriched CVEs

This session will explore the challenges posed by unenriched CVEs in the National Vulnerability Database (NVD), which has left over 18,000 CVEs without proper CPE identifiers since February 2024. These unenriched reports severely limit automated vulnerability management as they remain invisible to CPE-based searches. With contractors historically managing NVD enrichment and the backlog growing monthly, organizations relying on CVE-based vulnerability databases face significant gaps in visibility.

We’ll discuss strategies to compensate for these gaps and the potential of alternative identifiers, like purl, in addressing these issues, particularly in the open-source ecosystem.

Zaira Pirzada - Hive Pro

Panel Discussion | Vulnerability Management in the Headlines: Proactive Strategies to Stay Ahead of Cyber Threats

Recent headlines have underscored the critical importance of effective vulnerability management as cybercriminals continue to exploit weaknesses faster than ever before. In this panel discussion, cybersecurity experts will analyze:

High-profile vulnerabilities that made the news and the lessons learned from these incidents.
Evolving tactics of threat actors and the strategic approaches that organizations can adopt to stay ahead.
From improved threat intelligence to enhanced patch management and proactive vulnerability assessments, this session will provide actionable insights to help you anticipate and counter emerging threats before they strike.

Join us to gain a deeper understanding of how to protect your organization from becoming the next headline.

Paul Asadoorian - Eclypsium
Ed Moore - Carnival Corp
Matt Johansen - Reddit

Time Zone: (UTC-04:00) Eastern Time (US & Canada) []

View our lineup of sessions and speakers

View our lineup of

sessions and speakers