On Tuesday, cyber-exposure company Tenable launched new predictive prioritisation features in their Tenable.io and Tenable.sc lineup to quicken the process of spotting, prioritisation and solving of vulnerabilities before they are published in the National Vulnerability Database (NVD).
The tech, according to Tenable's spokespeople, "analyses Tenable vulnerability data combined with third-party vulnerability data, threat intelligence and vendor security advisories using data science to predict the likelihood a vulnerability will be exploited in the near future."
The resulting Vulnerability Priority Rating (VPR)—the scores are claimed to be dynamic and reportedly change with the threat landscape—indicates the remediation priority of each flaw and provides companies with a head-start in reducing their exposure to cyber risk.
“The lag time between when a vulnerability is first disclosed and when it’s published in the NVD inhibits an organisation’s ability to manage its exposure with risk-based metrics,” Renaud Deraison, CTO, Tenable, said in a statement to the press. “The latest functionality in Predictive Prioritisation gives security teams a head start in reducing their organisation’s cyber exposure, providing them with actionable insight needed to focus on the vulnerabilities that matter most.”
Predictive Prioritisation with the new pre-NVD ratings is available for both Tenable.io and Tenable.sc (formerly Securitycentre).