Krebs leads vulnerability discussions; Kolasky meets with industry on risk management

The DHS Cybersecurity and Infrastructure Security Agency emphasized its work on vulnerability disclosure issues at last week's Def Con conference, while the Internet Security Alliance had encouraging words – and advice – for CISA's growing efforts on cyber risk management, and senior officials have several public events to watch for this week.

CISA Director Christopher Krebs helped open Def Con Friday on a panel devoted to vulnerability disclosure processes. He offered support for a new initiative on disclosures proposed...