Although the discovery and scanning elements of Delve’s vulnerability management software are unique in that their performance auto-improves as our ML engine collects and leverages data across our ecosystem, it’s Delve’s exclusive Contextual Prioritization that truly sets us apart from legacy vulnerability management software vendors. Fully integrated within the Delve vulnerability management solution, Delve’s Contextual Prioritization is the only vulnerability prioritization that accounts for the vulnerability’s context on the network.
Delve’s AI engine consumes data around 3 dozen factors - internal and external - to risk-rank vulnerabilities on the network. Given its context sensitivity, Delve’s CPS (Contextual Prioritization Score) for a given vulnerability will not only vary from one network to another, but even from location to location on the same network. Contextual Prioritization starts with the CVSS score, and the Delve CPS is progressively increased or decreased based on each of the 3 dozen factors mentioned previously. Analysis of actual customer data has demonstrated that the Contextual Prioritization process has reduced the number of critical vulnerabilities by a factor of 15 in some cases. For example, a vulnerability with a CVSS score of 10 (on a scale of 1 to 10 with ten being the most critical), after Contextual Prioritization processing, may be rescored to a 5 or 6, or even lower, meaning the vulnerability’s context in that specific location on the network - on that specific asset - is a substantially lower risk to the enterprise than the generic CVSS score (which is rated independently of its network) would conclude. Fewer critical vulnerabilities means precious remediation resources are not wasted patching lower risk vulnerabilities and therefore maximum risk reduction is achieved for a given amount of remediation resources committed.