Medium Large organizations regardless of their industry and their sizes are in need of establishing a vulnerability management program to support their security best practices and compliance-driven requirements. Most of the organizations start their journey with acquiring the vulnerability scanning tool, performing vulnerability scans, and but that's just the beginning of their journey. In this 30 minutes session, we will talk about the overall VM process and the common areas that all organization struggle to complete in the 5 stages of the lifestyle of vulnerability management from discovery to remediation. a. Discovery b. Validation c. Prioritization d. Remediation e. Verification Major considerations when building a VM program : - Common mistakes and can be avoided - Why automation is an essential part of the process - How prioritization can help to adjust operations efforts and reducing the risk vs. remediating everything equally - Why metrics matter - 7 Rule of thumbs for building and a successful vulnerability management program Along with reviewing a real-world case study in one of the top 100 fortune companies.