In this episode of the VulnWise Show, hosts Steve Carter and Scott Kuffer engage with cybersecurity expert and semi-retired analyst Jon Oltsik to discuss the evolving landscape of vulnerability and exposure management. They explore best practices derived from conversations with CISOs, the role of AI in vulnerability management, and the persistent challenges of prioritization. The discussion also delves into incident response processes, the significance of threat modeling, and the implications of SLAs in managing vulnerabilities. Jon shares insights on the analyst perspective in cybersecurity and the relevance of frameworks like CTEM, emphasizing the need for continuous education in the field.
00:00 Introduction to Vulnerability Management Insights
02:15 The Role of Non-Technical Factors in Vulnerability Management
05:00 AI's Impact on Vulnerability Management
10:06 Prioritization Challenges in Vulnerability Management
15:09 Incident Response and Escalation Processes
20:09 The Importance of Threat Modeling
24:58 SLA Discipline in Vulnerability Management
30:19 Analyst Perspectives on Cybersecurity Trends
35:04 The Future of Cybersecurity Frameworks
