Web: https://www.reddit.com/r/cybersecurity/comments/11rphzz/whats_an_acceptable_timeframe_to_fix_a_critical/

March 15, 2023, 7:42 a.m. | /u/Thyuda

cybersecurity www.reddit.com

We're in the midst of a policy discussion at my medium sized company and we noticed, that some vulnerabilities take way to long to be fixed.
We're going of CVE Score and EXPRT Rating of Crowdstrike, what would be, in your opinion, realistic timeframes for critical vulnerabilities to be fixed from time of discovery to remediation?
I put the emphasis on realistic, I know in the ideal fairy tale world we'd be fixing them in around 24 to 48 hours, …

critical critical vulnerability cybersecurity fix vulnerability

Manager, Security Assurance & Automation

@ Amount | Chicago, IL / United States, Remote

Cybersecurity Specialist (m/f/d) Automotive

@ ALTEN | Friedrichshafen, Germany

Penetration Tester (Mid/Senior)

@ Baltic Amadeus | Vilnius, Kaunas, Lithuania

Senior Security GRC Analyst

@ RVO Health | Remote- US

Deputy Manager - Information Security - REF21199Z (Mumbai, Gurgaon. Bangalore)

@ WNS Global Services | New Delhi, India

Manager Pentest H/F

@ Hifield | Sèvres, France

Junior Consultant für Informationssicherheit (TISAX, ISO 27001) und Datenschutz (m/w/d)

@ MVI Group GmbH | München, Germany

Security Consultant/Associate - Recent Graduate (w/m/div.)

@ Bosch Group | Berlin, Germany

Security Consultant / Associate (w/m/div.)

@ Bosch Group | Bochum, Germany

(Senior) Security Consultant / Associate - Automotive Security (w/m/div.)

@ Bosch Group | Berlin, Germany

Manager, Information Security

@ PEAK6 | Belfast, Northern Ireland

Manager, Information Security (GRC)

@ PEAK6 | Dallas, TX