Intermediate Mitigation Measures May be Required for Apache Struts Vulnerabilities

March 22, 2017 | Carole Fennelly, CISM
Carole Fennelly, CISM

Carole Fennelly, CISM

Freelance Consultant

Carole Fennelly is a freelance Information Security Management consultant in the Greater NYC area. Carole has over 35 years of hands-on experience in the Information Security and Technology fields and has authored several industry-standard security benchmarks based on her extensive experience in operating system platforms and security practices. As a consultant, Carole has defined security strategies and developed policies and procedures to implement strategies at numerous Fortune 500 clients in the NYC area. Carole's ability to analyze technology initiatives and its implications for business requirements are complemented by her strong technical writing skills.

March 22, 2017 | Carole Fennelly, CISM

Intermediate Mitigation Measures May be Required for Apache Struts Vulnerabilities

The general consensus among InfoSec professionals is to patch critical vulnerabilities such as Apache Struts as soon as a patch is made available by the vendor. So why mightn’t your company simply patch Apache Struts and go on your merry way? Not all events can be remediated immediately. Very often, intermediate mitigation measures must be taken to lower the…