Rethinking risk based vulnerability management, Black Hat expo insights, and the news - Snehal Antani - ESW #420

Interview with Snehal Antani - Rethinking Risk-Based Vulnerability Management

Vulnerability management is broken. Organizations basically use math to turn a crappy list into a slightly less crappy list, and the hardest part of the job as a CIO is deciding what NOT to fix. There has to be a better way, and there is...

Segment Resources:

• https://horizon3.ai/intelligence/blogs/vulnerability-management-is-broken-there-is-a-better-way/

This segment is sponsored by Horizon3.ai. Visit https://securityweekly.com/horizon3 to learn more about them!

Topic - Andy Ellis's Black Hat Expo Experience

Andy Ellis visited every booth at Black Hat. Every. Single. One. He wrote up what he learned and we discuss his findings!

https://www.duha.co/state-of-security-vendors-blackhat-2025/

News

Finally, in the enterprise security news,

1. Tons of handy new and free tools!
2. is cybersecurity really at the latter stages of consolidation?
3. new books
4. is our obsession with risk quantification hurting our credibility?
5. AI trends
6. is there an impending AI layoff-pocalypse?
7. we explain the kids’ favorite new term: Clanker

All that and more, on this episode of Enterprise Security Weekly.

Show Notes: https://securityweekly.com/esw-420