Expel, the security operations provider that aims to make security easy to understand, use and improve, announced the general availability of Expel Vulnerability Prioritization, a service that informs organizations which vulnerabilities pose the greatest risk to them, so their security operations center (SOC) and IT teams can take immediate, informed action.
According to Forrester, software vulnerabilities are the second-most reported attack vector, making it difficult for organizations to know which vulnerabilities could lead to incidents in their environment. With such a long list of vulnerabilities to investigate, many security teams can get overwhelmed and not know where to dedicate resources.
“We don’t have the resources to research a list of vulnerabilities all day long, so Expel Vulnerability Prioritization gave us actionable insights—rather than just noise—on the vulnerabilities that pertained most to us and our environment,” said Laura Budge, security operations manager, UserTesting. “We were able to save a lot of time by eliminating the need to sift through vulnerabilities that weren’t as much of a concern, and instead focus our efforts on how to address the risks Expel surfaced.”
Also Read: Trellix to Host Ransomware Detection and Response Virtual Summit
Expel Vulnerability Prioritization is powered by Expel’s security operations platform, Expel Workbench™, and integrates with popular vulnerability management solutions. Coupled with Expel® Managed Detection and Response (MDR), Expel Vulnerability Prioritization quickly assesses exploitability, evidence of real-world attacks, and intent from social platforms, and correlates that data with context from the customer’s business and asset prioritization. Vulnerabilities requiring additional research escalate to a dedicated team of Expel analysts who perform further investigation to determine which ones require immediate action.
By connecting the dots between vulnerability data and priority assets, Expel assesses risk and potential impact of vulnerabilities against external threat intelligence and what threat actors most often exploit. Customers get a prioritized list with recommendations—that they can share with their IT counterparts—that provide next steps for immediate action. The vulnerabilities and context are also presented within Expel Workbench, so customers can easily manage their risk and response from a single resource.
“The list of vulnerabilities out in the wild grows longer everyday, and organizations simply can’t address them all. Instead, they must focus on patching and fixing the ones that have the greatest potential to impact their systems,” said Matt Peters, Chief Product Officer, Expel. “Expel Vulnerability Prioritization gives organizations powerful intel and explicit guidance on the fixes they should act upon quickly to keep bad actors from exploiting them.”
SOURCE: Businesswire