Quotation Novotny, Alexander. 2022. When the toy blocks tower collapses – Controlling critical vulnerabilities in IT architectures. Practitioner Talk in Information Systems Management and Accountability Course, Vienna University of Economics and Business, 13.01.22


RIS


BibTeX

Abstract

Critical security vulnerabilities in IT components of ubiquitously used IT solution stacks can represent a systemic risk to the integrity of digital infrastructures and the functioning of digital society. For example, the Log4j Java logging component's log4Shell vulnerability CVE-2021-44228, which has become public in December 2021, affected countless global IT platforms including Twitter, Apple iCloud and Steam. The talk will address how organizations can avoid adverse impact by implementing a stringent security governance guided by frameworks including CVSS (Common Vulnerability Scoring System), MITRE ATT&CK, and the continuous auditing of suppliers and IT solutions providers.

Tags

Press 'enter' for creating the tag

Publication's profile

Status of publication Published
Affiliation External
Type of publication Unpublished lecture
Language English
Title When the toy blocks tower collapses – Controlling critical vulnerabilities in IT architectures
Event Practitioner Talk in Information Systems Management and Accountability Course
Location Vienna University of Economics and Business
Event country Austria
Date Jan. 13, 2022

Associations

People
Novotny, Alexander (Details)
Research areas (ÖSTAT Classification 'Statistik Austria')
2548 IT security (Details)
Google Scholar: Search