I am a Senior Manager at Deloitte Canada where I lead the Vulnerability Management & Penetration testing practice in Toronto; from here I support clients across Canada and globally. I have also worked at a bank where I understood what is “on the other side of the table”. Both experiences have helped me close the circle and understand why the topics in this talk go beyond normal pentesting.
Dennis Chaupis
All Sessions by Dennis Chaupis
-
Day 2
-
10:15
The What, Who, Whom and Why about a Vulnerability Management Program
10:15 - 11:00Traditional vulnerability management is not about pentesting network, apps, or even red/blue/purple team. In today’s world, we need to talk about a Vulnerability Management Program (VMP); a program that puts all the pieces together in order to achieve a more resilient state. While this is not a technical talk, we will cover some of the challenges that other people in the VM-world face daily. This talk will make clear the connection between the VMP and Patch Management, Change Management, Currency Management, Risk Management, Risk Appetite, and others.Vulnerability ManagementWhereSpeakers Hall
-
16:15
Coexisting with Vulnerabilities
16:15 - 17:00Ever wonder why some vulnerabilities are never fixed? Ever had the thought of "how come is this still present.... it's just a click!"? Well, in this talk, we will cover some of the challenges that organizations face when attempting to fix some vulnerabilities, in other words... what happens after a pentest report is submitted.PentestingVulnerability ManagementWhereSpeakers Hall