· Palaniappan P · 8 min read
Building a Vulnerability Management Program on AWS: CVSS, KEV, and Reachability
How to build a vulnerability management program that scales beyond CVE-counting. Inspector v2 deployment, CVSS + CISA KEV + reachability for risk-based prioritization, container and IaC scanning in CI/CD, and remediation SLAs that survive audits.