The problem of vulnerability detection, remediation and prevention of exploitation is still topical, especially in light of the popularity of in-house development and the shift to Open Source, the withdrawal of foreign vendors and the inaccessibility of official update channels, the use of AI by attackers to develop exploits and various organisational difficulties in the operation of vulnerability registries.
The need to increase the level of business digitalisation leads to an increased need for automation tools, but if there is no suitable commercial or Open Source solution available, companies choose either custom software development or, especially in the case of large corporations, seek to deeply customise or develop the required software from scratch by the internal IT team.
In a new article at CISOCLUB, Security Vision CEO Ruslan Rakhmetov explained how to structure the internal software development process, use the AppSec methodology and classic vulnerability and threat catalogues from the MITRE organisation.
He also explained the functionality of the Security Vision NG VM solution and the possibilities of its integration with other Security Vision products.
Read more in the article.
