CISO Conversations with Boards: Risk, Not Metrics

Guest:

• Sumedh Thakar, President and CEO, Qualys

Topics:

• How did vulnerability management (VM) change since Qualys was founded in 1999? What is different about VM today?
• Can we actually remediate vulnerabilities automatically at scale? Why did this work for you even though many expected it would not?
• Where does cloud fit into modern vulnerability management?
• How does AI help vulnerability management today? What is real?
• What is this Risk Operations Center (ROC) concept and how it helps in vulnerability management?

Resources:

• 2025 DBIR Report 
• Qualys ROC concept defined
• Qualys ROC-on conference
• Shaping the Future of Cyber Risk Management blog 
• Qualys State of Cyber Risk Assessment Report
• EP109 How Google Does Vulnerability Management: The Not So Secret Secrets!