Do you know what is the most predictable trend in Information Risk Management ?
It is vulnerabilities. If you review data breach reports from the last few years, you will notice one thing that is very consistent and it is about the vulnerabilities! The only change is that things have become worse over the years, and looks like the trend will continue.
Does it say something about our approach to managing vulnerabilities? Perhaps!
So are we missing something? Perhaps!
In this post I have pulled out 5 trends that I feel clearly indicates that the current approach of vulnerability management is not working, and it is time to re-think our approach.