White Papers

Introduction to Contextual Prioritization

There have been a few attempts to quantify the risk of individual vulnerabilities in the security community, most notably, the CVSS risk score offered by the National Vulnerability Database. Others have attempted to assign a vulnerability risk score based on factors independent of – or external to – an organization’s unique network architecture. Building remediation priorities through the lens of not only external factors, but also more importantly, the specific environment in which the vulnerabilities reside, is called Contextual Prioritization.