James Hayes, vice president for global government affairs at Tenable, wrote in a blog post published Wednesday that government agencies and other organizations should consider vulnerability management as a “fundamental first step“ to reduce the risk of cyber attacks.
He mentioned the Department of Homeland Security's Continuous Diagnostics and Mitigation program and how it supports the practice of vulnerability management.
Hayes noted that the Advancing Cybersecurity Continuing Diagnostics and Mitigation Act introduced in Congress seeks to ensure that federal agencies are equipped with platforms to manage cyber vulnerabilities.
“Vulnerability management is a practice that must be adopted widely as the foundation supporting the pillars of the government's IT systems,“ Hayes wrote. “Without visibility into the threats of today and tomorrow, organizations are at risk of a cyberattack with significant consequences.“