Security Engineer here in the vulnerability management space. I was wondering what you've seen in terms of remediation from the companies you've insured. Are they having dedicated teams specific to remediating vulnerabilities identified, or still more the traditional sysadmins being the remediators and security teams more just being the identifier and alarm raisers for vulnerabilities? Not to get into specifics but we run super lean and trying to wrangle all of our server owners to remediate has been a feat. Log4J has brought a spotlight for us but we want to capitalize on that to get the resources we need. Any insight would be greatly appreciated!
bensport91 karma
Security Engineer here in the vulnerability management space. I was wondering what you've seen in terms of remediation from the companies you've insured. Are they having dedicated teams specific to remediating vulnerabilities identified, or still more the traditional sysadmins being the remediators and security teams more just being the identifier and alarm raisers for vulnerabilities? Not to get into specifics but we run super lean and trying to wrangle all of our server owners to remediate has been a feat. Log4J has brought a spotlight for us but we want to capitalize on that to get the resources we need. Any insight would be greatly appreciated!
View HistoryShare Link