A SANS 2021 Survey: Vulnerability Management— Impacts on Cloud and the Remote Workforce

A SANS 2021 Survey: Vulnerability Management— Impacts on Cloud and the Remote Workforce

Rapid7
Published by: Research Desk Released: Feb 08, 2022

Vulnerability management (VM) continues to be a struggle for many organizations.

To succeed with vulnerability management, it takes a coordinated effort among security, IT (both systems and software development), and the business operations groups. Organizations must also identify, acknowledge, and track the roadblocks and technical debt within the organization.

We conducted similar vulnerability management surveys in 2019 and 2020, we also analyzed some of the changes to determine what progress has been made and identify some of the year-over-year differences.

Some of the key findings and takeaways from the survey include:

  • The percentage of companies with a formal program continues to increase from
    63% in 2020 to 75% in 2021 with the remaining participants either having an informal
    program or planning on creating a formal program in the next 12 months
  • An increase in cloud, container, and custom software development or application VM requirements and capabilities over levels reported in 2019 and 2020, accompanied by maturity across almost all life-cycle phases being comparatively lower for these asset types.

And more