Yaron Levi, Dolby, Ian Amit, Rapid7, David Cross, Oracle Saas Cloud, Elad Yoran, Seemplicity, and Ravid Circus, Seemplicity
Even with the best security people deploying the best security scanners, businesses today experience stubbornly long time-to-remediation.
Why? The reality today is that, before any security findings can be fixed, security teams are often forced to play air traffic controller – deduplicating, sorting, and prioritizing findings coming in from multiple siloed tools, then routing and following up with developers all across the organization to make sure problems get fixed. This leads to the ultimate irony - security teams become the main bottleneck for remediation.
But, does it have to be that way? Can security be removed as the middleman between findings and fixers and instead become a guiding and enabling function?