The SOC is blind to the attackable surface

The headline reads a bit like a haiku but there are some good points in here. I’ve been pushing the concept of combining threat modelling, asset management and configuration management tools as an essential part of the cybersecurity armoury for a few years…:

[…] Security teams that are reliant on CVSS scoring for patching are often flying blind and waste time fixing issues that pose no real risk to business-sensitive assets. In addition to adding key risk context and evaluating the criticality of exposures, the right solution should direct teams to the most accurate and up-to-date vendor patches, saving hours of research.


Original article