Patch vs. Vulnerability Management: An In-Depth Analysis
In this presentation, Derek Boczenowski will examine the intricate distinctions and complementary roles of patch and vulnerability management in ensuring cybersecurity resilience. While patch management focuses on updating systems to rectify known vulnerabilities, vulnerability management involves a holistic assessment of potential weak points, from identification to mitigation. This presentation sheds light on the symbiotic relationship between these two strategies, emphasizing their individual merits and how they interplay. Through real-world examples and case studies, attendees will gain a comprehensive understanding of how to effectively integrate both approaches, optimizing their security posture in an increasingly complex digital landscape.
Derek Boczenowski is SVP of IT Audit with Compass IT Compliance. Derek has over 20 years of IT experience in a variety of vertical markets, including financial services, higher education, and state/local government. Prior to joining Compass IT Compliance, Derek was the VP of Technology for a credit union in Massachusetts with approximately $700M in assets under management. With an MBA in Technology Management as well as industry leading certifications, such as being a Certified Information Systems Auditor (CISA), Qualified Security Assessor (QSA), Certified Information Security Manager (CISM), and Certified Data Privacy Solutions Engineer (CDPSE), Derek works with clients of all sizes and in all vertical markets to help them identify gaps in their IT security strategies and provide relevant, attainable solutions to ultimately mitigate their overall risk. Derek has spoken at numerous conferences throughout his career, including the Fiserv national conference and New York Banker’s Association Annual Meeting, and is recognized as a thought leader in the field of information technology and information security.