On Wednesday September 16, 2020, from 8:30 am to 10:00 am, a breakfast was held on the theme “From vulnerability management to risk management”.

From the definition of security principles and rules (PSSI) to their remediation, the management of vulnerabilities must respect different phases: exploration of “assets”, collection of necessary data, assessment of associated risks, prioritization, etc.

How to set up effective vulnerability management, that is to say aligned with the organization’s business challenges? What sources of information to use? What indicators to measure its effectiveness and report to COMEX? On the contrary, what pitfalls should we avoid?

Mr. Thibaud Signat, Security Engineer Manager Europe at Tenable and Mr. Guillaume Vassault-Hagère, CEO of Yes We Hack and et Mr. Arnaud Martin, RSSI at Groupe Caisse des Dépôts were present to discuss it.