TechValidate Research on Cisco Vulnerability Management


Kenna Security Case Study

Fortune 500 Telecommunications Services Company

Introduction

This case study of a Fortune 500 telecommunications services company is based on an October 2019 survey of Kenna Security customers by TechValidate, a 3rd-party research service. The profiled company asked to have their name blinded to protect their confidentiality.

“We use Kenna to aggregate data from various scanning tools. The graphical representations are especially important for presenting results to executives.”

Challenges

The business challenges that led the profiled company to evaluate and ultimately select Kenna Security:

  • Vulnerability management challenges they experienced that led them to implement the Kenna Security Platform:
    • Too many vulnerabilities with no way to effectively prioritize
    • High volume of security data lacking context for decision making
    • No way to quantify or measure risk from vulnerabilities
    • Inefficiencies in vulnerability remediation

Use Case

  • Approach used to prioritize vulnerabilities prior to Kenna:
    • CVSS 8+
  • How they evaluate the success of their Kenna Security platform implementation:
    • Reduction in Mean Time To Remediate (MTTR)
    • Kenna risk score reduction
    • Reduction in vulnerability investigation time

Results

The surveyed company achieved the following results with Kenna Security:

  • Reduction of time spent on the following activities, since using Kenna:
    • Time spent on Vulnerability Investigation: over 50%
    • Time spent on remediation: over 50%
    • Time spent on reporting: over 25%




About This Data

This data was sourced directly from verified users of Cisco Vulnerability Management by TechValidate.

TechValidate verifies the identity and organizational affiliation of all participants that contribute to published research data. When research participants so desire, we also guarantee their anonymity so that they may share information honestly and freely.


More Research on Cisco Vulnerability Management