Individual Vulnerability Severity Not Always a Good Measure of Risk Exposure. A mainstay of IT security programs across the world, the Common Vulnerability Scoring System, may have terminal flaws when applied to the mirror universe of operational technology – a place where ordinary assumptions about risk don’t apply.
First seen on govinfosecurity.com
Jump to article: www.govinfosecurity.com/beyond-cvss-ot-security-looks-for-its-risk-methodology-a-31038
