GRC Academy Podcast April 30, 2024 S-1 / E-22 00:27:07

Integrating Threat Intelligence into Vulnerability Management with Patrick Garrity

Interview with Patrick Garrity about integrating threat intelligence into vulnerability management.

In this episode, Jacob speaks with cybersecurity researcher Patrick Garrity!

Patrick Garrity is a seasoned security researcher at VulnCheck where he focuses on vulnerabilities, vulnerability exploitation and threat actors.

In this episode they discuss the importance of integrating threat intelligence into vulnerability management using the Exploit Prediction Scoring System (EPSS), CISA Known Exploited Vulnerabilities Catalog, and the changes in CVSS 4.0!

Here are some highlights from the episode:

  • How Exploit Prediction Scoring System (EPSS) can predict exploitation
  • How vulnerability scanners integrate EPSS
  • CISA’s Known Exploited Vulnerabilities (KEV) Catalog
  • The national security implications of vulnerability management

Follow Patrick on LinkedIn:

VulnCheck Website:

Thanks to our sponsor Keeper Security!

Need a FedRAMP authorized Password Manager and secure File Sharing solution?

See how Keeper can help you comply with CMMC:

Start a free 14-day trial of Keeper: