particularly chaining vulnerabilities together that may have moderate residual risk in the POA&M but aggregated to high due to the impact would have by being able to exploit multiple from one incompliant configuration??
[link] [comments]
has anyone built a risk aggregation methodology / risk mapping matrix for NIST 800-53 controls?
old.reddit.com / @/u/BabyGator44, https://old.reddit.com/user/BabyGator44
submitted by /u/BabyGator44
[link] [comments]
published 4 months ago
See all items from the same source