Importance Of Risk Based Vulnerability Management

IEEE.org | IEEE Xplore Digital Library | IEEE Standards | IEEE Spectrum | More Sites

Importance Of Risk Based Vulnerability Management - Hina Gandhi

#vulnerability #management #security #SIT #IEEE #SSIT #AI

SEE SPEAKER INFORMATION

Abstract:

As cyber threats grow in complexity and frequency, traditional vulnerability management strategies—centered around volume and severity scores—are no longer sufficient. Risk-Based Vulnerability Management (RBVM) represents a shift from a reactive to a strategic, intelligence-driven approach that prioritizes vulnerabilities based on the actual risk they pose to an organization’s assets and operations. By incorporating business context, threat intelligence, and exploitability metrics, RBVM enables organizations to allocate resources more efficiently, reduce exposure windows, and make informed remediation decisions. The talk will explore the key principles of RBVM, its advantages over legacy models, and how it empowers organizations to align security efforts with business risk, ultimately strengthening their cybersecurity posture in a dynamic threat landscape.As cyber threats grow in complexity and frequency, traditional vulnerability management strategies—centered around volume and severity scores—are no longer sufficient. Risk-Based Vulnerability Management (RBVM) represents a shift from a reactive to a strategic, intelligence-driven approach that prioritizes vulnerabilities based on the actual risk they pose to an organization’s assets and operations. By incorporating business context, threat intelligence, and exploitability metrics, RBVM enables organizations to allocate resources more efficiently, reduce exposure windows, and make informed remediation decisions. The talk will explore the key principles of RBVM, its advantages over legacy models, and how it empowers organizations to align security efforts with business risk, ultimately strengthening their cybersecurity posture in a dynamic threat landscape.

Date and Time

Location

Hosts

Registration

Add Event to Calendar
iCal
Google Calendar

If you are not a robot, please complete the ReCAPTCHA to display virtual attendance info.

Contact Event Hosts

Starts 08 June 2025 09:00 PM UTC
Ends 11 July 2025 04:00 AM UTC
No Admission Charge

Speakers

Hina

Topic:

Biography:

Speaker Bio:

Hina Gandhi is a skilled software engineer and senior IEEE member with deep expertise in building scalable,high-performance systems for cloud and data-intensive applications. Currently a Senior Software Engineer at Cisco Systems, she leads the design and development of risk-based vulnerability management software, driving critical initiatives like transforming monolithic services into microservices and enhancing application performance and memory efficiency. Previously at VMware, Hina played a key role in building cost-effective data pipelines, high-throughput services, and policy enforcement engines that significantly improved performance and security for enterprise cloud platforms. Her work with big data technologies such as Spark and Kafka, along with her contributions to cloud cost optimization and CIS policy compliance, earned her multiple internal awards for excellence. Hina holds a Master’s in Information Systems from Northeastern University and a Bachelor’s in Computer Science from Jaypee University of IT in India. Passionate about innovation and continuous improvement, Hina brings a thoughtful and data-driven approach to solving complex engineering challenges across the cloud and cybersecurity landscape and is passionate about giving back to professional society by contributing through leadership articles, conducting guest lectures at universities and serving as judge in hackathons and award programs.

Email:

Address:United States