…And so does @rybolov. I don’t often do this, but the latest post on the Guerilla CISO blog is worth a re-post. Go check it out here. I have been talking about this a lot lately. SCAP is still coming into its own but has a lot of promise in helping security teams automate much of the vulnerability management and patching pains they experience today.
I Dream of Federation
15 07 2009Comments : Leave a Comment »
Tags: hamster wheel of pain, patching, scap, vulnerability management
Categories : standards, vulnerability scanning
Places to go, People to see
8 07 2009Quick schedule update: Looking forward to both of these events. Let me know if you’ll be at either and want to chat. Looking to fill my schedule up for these events.
Black Hat – Las Vegas: Invited to participate on a panel to discuss the Laws of Vulnerability Research 2.0. Here’s a link to the summary. Register here.
Metricon 4.0: This should be a really good event. The full agenda is published here. I will be discussing the use of the Security Content Automation Protocol (SCAP) and the metrics being produced from this new view into the data. You can request participation via email here.
Hope to see you there!
Comments : Leave a Comment »
Tags: blackhat, metricon, metrics, scap, vulnerabilities
Categories : event, speaking engagements