With the increasing spend in security budgets and the apparent increasing frequency of data breaches, managing vulnerabilities in an organisation can seem like a never-ending game of blind whack-a-mole. How organisations approach vulnerability management in the past simply does not cut it with today’s technology stack and development methodologies. By analysing real life vulnerability data, we will discuss some of the common themes that seem to persist and look at some actions we could take to dramatically improve our overall security.
Rahim is the COO and co-founder of edgescan™, a Security Consultancy firm and Fullstack Vulnerability Management SaaS based in Dublin, Ireland. Rahim is responsible for operational excellence and has extensive experience delivering penetration testing services to a wide range of organizations globally across many industry verticals. Prior to this, Rahim was Head of Product & Operational Security for Fonality, a VOIP provider based in Los Angeles and was also a senior security consultant for a ‘Big 4’ consultancy firm for many years. Rahim has been an OWASP (Open Web Application Security Project) contributor and volunteer since 2007 and was part of the Dublin chapter board for a number of years. Rahim graduated in 2002 from Trinity College Dublin (Ireland) with a Bachelor’s degree in Computer Science, completed an M.Sc in Security & Forensic Computing from Dublin City University (Ireland) in 2006 and has been a CISSP (Certified Information Systems Security Professional) since 2008.