S4E22: Resilient Cyber w/ Jerry Gamblin

In this episode of Resilient Cyber, Chris Hughes sits down with Jerry Gamblin, Director of Research at Cisco, to discuss the ever-evolving vulnerability landscape. With years of experience in government, the corporate world, and now leading research efforts at Cisco, Jerry shares his insights on the state of vulnerability management and the challenges organizations face.

Key Highlights:

• Misuse of CVSS base scores and the upcoming changes in CVSS 4.0

• The growing backlog of vulnerabilities in organizations and how to manage "vulnerability debt"

• The importance of prioritizing critical assets over attempting to patch everything

• Software supply chain risks and the difficulty in securing third-party code

• The role of EPSs and SysaKev in vulnerability prioritization and remediation