Understand Vulnerability Management Maturity with a Self-Assessment Tool

Discover the newest tool for self-assessing your organization’s vulnerability management maturity, built on the renowned SANS Vulnerability Management Maturity Model (VMMM). This tool provides feedback across all 12 focus areas of the VMMM, empowering you to gain insights into your program’s maturity and effectiveness and provide valuable feedback to your leadership team. By answering a series of simple YES/NO questions, you will gain understanding of how mature your vulnerability management program is. By the end of this webcast, you’ll understand how to discover the areas to focus on to take your program to the next level. Don’t miss out on this opportunity to hear from MGT516 course author Jonathan Risto as he discusses the VMMM and his latest tool! Learning Objectives: - Discover the benefits of using a vulnerability management maturity model self-assessment tool to improve your organization’s security posture - Use the vulnerability management maturity model self-assessment results to develop a roadmap for improving your organization’s security program maturity - Understand and be able to communicate information about your organization’s vulnerability management program maturity to leadership and areas for improvement About the Speaker With a career spanning over 20 years that has included working in network design, IP telephony, service development, security and project management, Jonathan has a deep technical background that provides a wealth of information he draws upon when teaching. Currently, Jonathan works for the Canadian Government conducting cyber security research in the areas of vulnerability management and automated remediation. He is also an independent security consultant. Jonathan is a co-author and instructor for SANS MGT516: Building and Leading Vulnerability Management Programs. Learn more about Jonathan at MGT516: Building and Leading Vulnerability Management Programs SANS is the most trusted and by far the largest source for information security training and security certification in the world. It also develops, maintains, and makes available at no cost, the largest collection of research documents about various aspects of information security, and it operates the Internet’s early warning system - the Internet Storm Center.