Understanding Vulnerability Management

BeyondTrust's Maiffret on Creating a Baseline for Security

Marc Maiffret
"If you're not doing the right things on managing vulnerabilities, it doesn't really matter what other kinds of sophisticated things you do - that's the baseline for security," says BeyondTrust's Marc Maiffret.

Most companies are still not using privilege management correctly, he adds. "They continue to have users run as administrator, and all of these things that [worsen] susceptibility to malware and attacks," he says.

In this interview, conducted at Infosecurity Europe 2014, Maiffret discusses:

  • Bridging the gap between IT security and business management;
  • Viewing vulnerability and privilege management as just one layer in IT security; and
  • Common mistakes organizations make when implementing vulnerability management solutions using SIEM technologies to complement vulnerability management practices.

Maiffret joined BeyondTrust via the acquisition of eEye Digital Security, which he co-founded in 1998 and served as chief technology officer. Maiffret created one of the first vulnerability management systems and also launched Web application firewall products that have been deployed worldwide.





Around the Network