When it comes to multiple vulnerabilities in the network, it is not enough to consider only the CSVV score. I can name some other factors that should be taken into account: - impact scope of vulnerablities (which parts and how much) - accessablity of the vulnarable objects (internal or external) - the usage of the vulnerable service/device in the network (How many users/devices) For example, a public service with a vulnerability score of 8 may pose a greater risk than a completely internal service with a score of 9.5!

When faced with multiple network vulnerabilities, I would start by assessing their risk impact (CVSS score). I would then first deal with those with high or critical ratings (9.0-10.0), as they pose the greatest threat. Next, I would consider the exploitability of each vulnerability, prioritizing those with active exploits or widely available attack methods, since they are more likely to be targeted and can cause immediate damage if left to chance.

If it bleeds it Leeds. I’d find out the risks that pose the biggest risk to my network and fix those things first. The other things that is going to determine the order of fixing things is does it cause an outage and how long will that outage be. If I can fix something with no outage even if its risk is lower I would probably fix that just to get it off the list. Things that are going to cause outages means talking to the people to outage is going to affect to schedule the outage.

Assess and address internet facing vulnerabilities first, as they tend to be more dangerous, implement MFA whenever possible.

Identify the current risk vs the possible future risk. If I have a vulnerability with a higher chance of being a big threat if it's exploited but I have a vulnerability that is currently being exploited, that means my priority and most critical vulnerability is the one currently impacting my network. After that I can start addressing the future higher risk vulnerabilities

Para priorizar os riscos de segurança cibernética, adoto uma abordagem que considera a gravidade e o impacto potencial de cada vulnerabilidade. Primeiro, analiso o CVSS (Common Vulnerability Scoring System) para classificar a severidade. Em seguida, avalio o impacto no negócio, priorizando sistemas críticos e dados sensíveis. Também levo em conta a facilidade de exploração e a existência de exploits conhecidos. Outro fator é a disponibilidade de patches, que aplico imediatamente quando disponíveis. Por fim, reviso o tempo de exposição e dou prioridade às ameaças que estão em maior risco de serem exploradas.

Prioritizing critical vulnerabilities is essential for cybersecurity and business continuity. Addressing the most impactful and exploitable threats first, using a risk-based approach, is crucial. This strategy protects valuable digital assets, ensures operational continuity, and maintains customer trust. By focusing on vulnerabilities that pose the greatest risk of disruption or financial loss, resources are optimized and reputational risks are minimized. Staying current with security bulletins and promptly applying patches is vital for mitigating risks, ensuring that the technological infrastructure supports strategic goals and sustainable growth.

Para decidir qué vulnerabilidades abordar primero, no basta con mirar solo el puntaje CVSS. Es importante pensar en el impacto real en el negocio, qué tan expuesta está cada vulnerabilidad y lo fácil que sería explotarla. Creo que también es clave analizar el contexto de la red y la importancia de los sistemas afectados para tomar mejores decisiones. Al final, se trata de equilibrar el riesgo con los recursos disponibles para mitigar.