Cybersecurity incident disclosures and vulnerability warnings continue to be released at an alarming and fatiguing rate, and there aren't any signs of breach activity slowing down. Vulnerability management is more important than ever, yet staying on top of vulnerabilities poses a major challenge for security and risk (S&R) professionals. This report analyzes the ways in which the vulnerability management technology space has evolved. It will help S&R pros repair their strained or broken processes and move past low-impact checkbox scanning to proactive, risk-based assessments.