Best Practice Report

How To Strengthen Vulnerability Risk Management With Remediation Prioritization

Creating A Vulnerability Identification, Prioritization, And Response Framework

December 21st, 2022
With contributors:
Merritt Maxim , Hailey DiCicco , Peggy Dostie


With hundreds of thousands of software vulnerabilities to manage, security and risk (S&R) professionals don’t know where to start. Remediation priority has often been tied to Common Vulnerability Scoring System (CVSS) scores, which don’t consider what’s most important for your specific organization, attack feasibility, active threats, and other aspects of security programs. This report discusses how to prioritize vulnerability remediation using an identification, prioritization, and response framework.

Want to read the full report?

Contact us to become a client

This report is available for individual purchase ($1495).

Forrester helps business and technology leaders use customer obsession to accelerate growth. That means empowering you to put the customer at the center of everything you do: your leadership strategy, and operations. Becoming a customer-obsessed organization requires change — it requires being bold. We give business and technology leaders the confidence to put bold into action, shaping and guiding how to navigate today's unprecedented change in order to succeed.