Driving Healthy Vulnerability Management Practices in the Enterprise Using KRI’s


Healthy vulnerability management in a large enterprise is an uphill battle for many reasons. Distributed governance, poor application inventories, legacy applications that are hard to maintain, and fixation on new features create new vulnerabilities and propagate existing ones. Manulife has used global Key Risk Indicators (KRIs) to drive healthy security behaviors, show visibility, and promote continuous security management. In this talk, David Matousek, Director of Product and Strategy for Security Services at Manulife Financial will walk though:
• Why Manulife adopted a KRI strategy as opposed to centralized management
• Global and business unit KRIs used for vulnerability management
• Observability and transparency of KRIs to drive healthy security behaviors

Browse SnykCon 2021 talks


David Matousek
Director and Lead Technical Product Owner of Cybersecurity, Manulife