CIS Control 7 - Continuous Vulnerability Management - sponsored by CyberCNS Artwork

The CyberCast

The CyberCast is purpose built for MSPs, MSSPs and IT Practitioners.In each episode you will learn about a new security control, how it maps to the different frameworks, the impact it has, building a policy around it, how the threat actors exploit it - via MITRE ATT&CK - what you can do to defend against it - MITRE Shield, common mistakes or oversights made when implementing into their tech stack and trends.Sponsors:Datto - CIS Control 3 - Data ProtectionNetwrix - CIS Control 3 - Data ProtectionDuo - CIS Control - Multifactor Authentication

All Episodes

The CyberCast

CIS Control 7 - Continuous Vulnerability Management - sponsored by CyberCNS

December 22, 2021 • Andrew Morgan

Note we discuss Log4j as this is a very timely topic to this control.

Abstract: Cyber defenders are constantly being challenged from attackers who are looking for vulnerabilities within their infrastructure to exploit and gain access. Defenders must have timely threat information available to them about: software updates, patches, security advisories, threat bulletins, etc., and they should regularly review their environment to identify these vulnerabilities before the attackers do. Understanding and managing vulnerabilities is a continuous activity, requiring focus of time, attention, and resources.

Sponsor: CyberCNS interview with Shiva Shankar, CTO & Founder at minute 45:22.
Learn more here: https://www.cybercns.com/ (free trial)
Shiva Shankar: https://www.linkedin.com/in/shivashankarj/

Co-hosts:
Ryan Weeks: https://www.linkedin.com/in/ryanweeks/
Phyllis Lee: https://www.linkedin.com/in/phyllis-lee-21b58a1a4/
Wes Spencer: https://www.linkedin.com/in/wesspencer/