{“lastseen”:”2025-09-23T16:51:43″,”description”:”**_\u201cWe shall not fail or falter; we shall not weaken or tire \u2026 Give us the tools and we will finish the job.\u201d_****** \u2013 Winston Churchill \\n\\nEvery security team knows this truth: you can\u2019t patch everything, and you can\u2019t necessarily protect everything. History reminds us that perfection is rare, but decisive execution can change outcomes. With the right team and tooling, risk management can shift rapidly from reporting into trackable, meaningful action. \\n\\nThe mission is simple: continually de-risk the organization. The challenge? Too many teams stall after measuring and communicating cyber risk _,_ stopping short of that final action. What comes next is where impact is made:__**Are teams actively reducing risk, or just tracking it?**_ _ \\n\\nWell-prioritized patching delivers immediate, measurable gains. Yet not every risk can be patched. To finish the job, teams must move beyond dashboards and reports, stop chasing noise, and focus on innovative approaches to eliminating vulnerabilities that truly impact the business.\\n\\n## Real-World Impact: From Measurement to Action \\n\\nA global enterprise faced a familiar challenge: \\n\\n * Security teams drowning in data \\n\\n\\n * Thousands of critical vulnerabilities flagged every month \\n\\n\\n * Patching teams unable to keep up \\n\\n\\n\\nDespite countless conversations and new investments, the attack surface kept expanding, and trends moved in the wrong direction. The turning point came when leadership realized that adding more people and tools wasn\u2019t solving the problem. Critical vulnerabilities still went unaddressed for months, _even_ on the assets that everyone knew mattered most to the business. The organization could no longer afford to measure risk without eliminating it. \\n\\n### From Data to Outcome-Driven Results \\n\\nThis realization triggered a rapid shift into automated remediation, implementing Qualys Patch Management, and real-time tracking aligned to business units. The focus shifted to asset inventory, patching ownership, and orchestrated workflows. For the first time, Security and IT were operating in lockstep, guided by shared risk signals and defined ownership. \\n\\n**The Result: **\\n\\n * Mean time to remediate critical vulnerabilities dropped by almost 70% \\n\\n\\n * TruRisk scores visibly reduced across high-impact business units \\n\\n\\n * Internet-facing asset visibility increased by more than 300% \\n\\n\\n * For the first time: Leadership gained real-time visibility into progress _and_ effectiveness \\n\\n\\n\\nBest of all, the **team stopped chasing metrics and started executing** , seeing the impact of rapid risk reduction-action across the entire global enterprise. This transformation not only strengthened their security posture but also contributed to significant cost savings, including**reductions in cyber insurance premiums**. \\n\\nHistory and cybersecurity alike are filled with examples of overwhelming challenges met through clear mission goals, innovation, collaboration, and decisive execution. \\n\\n## **Breaking Through: Insights from D-Day** \\n\\n**_\\” A good plan executed now, is better than a perfect plan executed next week.\\” _**_\u2013 US Army_ _General George S. Patton_ \\n\\nFour years after Britain standing alone in the Battle of Britain, the improbable became possible. Following Axis overreach, allies from Russia, Canada, and the U.S. joined the fight. \\n\\nBy May 1944, Allied forces prepared to launch Operation Overlord. With clear priorities, secure intelligence, innovative tactics, and multinational collaboration, the pieces were in place. \\n\\n_Operation Overlord-Normandy Supply, Source:Wikipedia_\\n\\nThe mission: gain a foothold in occupied Europe by dismantling defenses, seizing key territory, and driving the enemy back. \\n\\n_Normandy Landings, Source:Wikipedia_\\n\\nWith their objectives set, the Allies faced the ultimate test: breaching the Atlantic Wall; a 1,700-mile barrier of mines, bunkers, and artillery built to repel any landing. It demanded unprecedented planning, coordination, and a bit of luck\u2026 all while under constant pressure. Months earlier, Operation Mincemeat proved the power of deception: With the right story, the enemy could be tricked into wasting resources. Building on that, leaders launched an elaborate campaign ahead of D-Day, convincing the Axis that landings were imminent at Cap d\u2019Antifer, Pas-de-Calais, and even Normandy itself. \\n\\nFake armies filled southern England, complete with inflatable tanks, wooden planes, and dummy craft. \\n\\n_Fake Tank,_ _Source:Imperial War Museums UK_\\n\\n_Ghost Army,_ _Source:__West Point Association of Graduates_\\n\\nRadio chatter and double agents like Garbo, simultaneously spread misinformation. Chaff was dropped from planes mimicking invading airborne forces, while small boats towed radar balloons to simulate advancing fleets. \\n\\n_Chaff Drop, Source:Wikipedia_\\n\\n_Chaff Factory Worker Handling Fake Parachuters\/Metal Strips, Source:Imperial War Museums UK_\\n\\nOperation Fortitude, Titanic, and Bodyguard were all designed to waste, confuse, and overwhelm enemy resources in various regions while the Allies prepared for the real invasion. \\n\\nThe well-documented Allied Naval deceptions were designed to create \u201cnoise,\u201d drawing enemy forces to the wrong locations, stretching defenses, and giving the actual assault a chance to succeed. More than 80 years later, these tactics are still being studied.\\n\\n## When to Execute: Probabilities vs. Perfection \\n\\n**_\u201cYou have to run risks. There are no certainties in war. There is a precipice on either side of you – a precipice of caution and a precipice of over-daring.\u201d_** _ – Winston Churchill_ \\n\\nOn the eve of June 6, 1944, the largest amphibious invasion in history, famously known as \u201cD-Day\u201d, began. Analysts had pored over weather data, geographical maps, and other trends in the region for months, searching for the _right_ time to launch. Trying their best to find patterns~~,~~ and certainty, they could only identify when conditions were _most likely_ to be favorable. No matter how many times they reran the numbers, no one could agree on the ultimate question: When _was_ the \u201cperfect time to launch\u201d? \\n\\nThe only consensus was a narrow window in late May and early June. Yet even that fragile window nearly collapsed just before launch day, as dense fog and rough seas threatened to postpone the assault indefinitely. \\n\\n_A Map of Weather Forecast, Source:Wikipedia_\\n\\nAllied Leaders understood that weather assessments, built on probabilities and fuzzy data points, would never provide 100% certainty. Most importantly, they knew waiting for perfect conditions might mean never launching at all.\\n\\nThey weighed their options carefully: \\n\\n**Delay and Wait** \\n\\n * Clearer visibility of enemy obstacles, and positions, with safer navigation and easier coordination. \\n\\n\\n * But with a longer, slower advance, and a much stronger resistance. \\n\\n\\n\\n** Launch in Zero Visibility** \\n\\n * Maximize surprise and use the high tide for a shorter advance. \\n\\n\\n * But with unseen obstacles, a high chance of stranded landing craft, and almost certain disaster. \\n\\n\\n\\nCommanders chose to wait. With deception in full swing and the tide receding, the assault began.\\n\\n_U-boat View, Source:Wikipedia_\\n\\nTheir orders: Overwhelm coastal defenses at five beaches, then fight 25 miles inland and capture control of Saint-L\u00f4. Each step brought heavier barriers and entrenched resistance. After six weeks of grinding progress through hedgerows and fierce defenses, Allied forces finally broke through, opening the gateway that allowed them to fan out across France, sever supply lines, and clear the path to Paris. Isolating the enemy and their ability to resupply proved key. \\n\\n_Map of D-Day Landings, Source:Wikipedia_\\n\\nThe victory didn\u2019t end the war outright, but it added the momentum needed to liberate France and Western Europe. \\n\\nJust a few years prior, France had fallen, and Britain had retreated from Dunkirk to defend the homeland. Without the innovative Dowding System during the Battle of Britain, all may have been lost. These moments showcased the power of mission focus, resource-limited orchestration, and relentless execution against overwhelming odds. \\n\\n**Lessons like these became the backbone of Allied success: **\\n\\n * Victory against a prepared, well-equipped enemy _required more_ than innovative manufacturing, heaps of firepower, and lots of dedicated people. \\n\\n\\n * Clear mission goals and understanding the battlefield are key. \\n\\n\\n * Distracting the enemy with \u201cnoise\u201d can be an effective weapon. \\n\\n\\n * Turning strategy into results _demands_ orchestration and intentional collaboration. \\n\\n\\n * Decisive execution secures objectives and eliminates threats. \\n\\n\\n\\nThese same principles apply in cybersecurity. Resilience can\u2019t be measured by alerts, dashboards, or vulnerability counts alone. Just as the Allies turned intelligence, misdirection, and decisive execution into advantage on D-Day, modern teams must be focused, while blending insight, strategy, and timely action to reduce risk and successfully outmaneuver threats. \\n\\n## Connecting the Five Steps to TruRisk \\n\\n**Digital signals should always reveal decisive moves** , making business risk something that\u2019s eliminated, not just tracked. As we\u2019ve shown throughout this series, chasing volume metrics and gaps without context drains time, energy, and resources.** ** \\n\\n * **Step 1: Shift to Priority – **Leading the shift to risk-based prioritization means fostering collaboration and a shared language across the organization. Risk (**TruRisk**) = Likelihood (**QDS**) x Impact (**ACS**) \\n\\n\\n * **Step 2: Measure** \u2013 Accurately identify asset and threat likelihood. Asset context (ACS) combined with threat intelligence (QDS) is key. \\n\\n\\n * **Step 3: Get Started – **Focus on High-Impact Risks: Prioritize remediation efforts on the highest potential business impact. When teams know what makes the cash register ring, it\u2019s clear where efforts start. \\n\\n\\n * **Step 4: Communicate – **Tracking and conveying cyber risk in business terms builds trust, aligns teams, and secures resources. In the end, it\u2019s the gap between confident execution and assumed results. \\n\\n\\n\\nNow, in **Step 5: Eliminate** , it all comes together. Execution is the capstone of a broader risk-based approach: Measurement, intelligence, prioritization, and communication become decisive actions that rapidly reduce risk to the business. \\n\\nWith the Qualys Enterprise TruRisk Platform, that final step is much clearer. \\n\\n## Closing the Unpatchable Gap with **TruRisk Eliminate** \\n\\n### _Mitigate, Isolate and Remediate_ \\n\\nClosing the Unpatchable Gap with **TruRisk Eliminate**, means teams no longer have to choose between waiting on a patch and living with exposure. TruRisk Eliminate helps organizations reduce risk through Patching, Mitigation, Isolation, _and_ advanced Remediation strategies. With built-in automation and full control over impact, uptime, and business cycles, TruRisk  Eliminate accelerates remediation, strengthens overall security posture, and addresses those unpatchable gaps. \\n\\n**Mitigate** , **Isolate** , **Patch** and**Remediate** options, fed directly from VMDR, let defenders apply the right fix at the right time.\\n\\n * Windows, Linux, and Mac OS patching \\n\\n\\n * Third-party application patching \\n\\n\\n * Vulnerabilities without an available Patch \\n\\n\\n * Vulnerabilities where Patches cannot be deployed \\n\\n\\n\\nMitigate enables teams to apply risk controls and configuration changes to address threats, particularly for unpatchable vulnerabilities, or situations where patching carries operational risk. \\n\\nIsolate provides a proactive way to quarantine risky assets and prevent exploitation, offering an alternative to reactive EDR approaches. It isolates devices from the network while still enabling remote patching. \\n\\n * Integrated with VMDR, vulnerabilities get marked as Mitigated(\u201cIsolated\u201d) and will reduce the associated Qualys Detection Score \\n\\n\\n * Also, supports exceptions for trusted applications and destinations (Windows or Linux), ensuring isolated assets remain connected to essential resources \\n\\n\\n\\n**_See TruRisk Eliminate Blog: needrestart, WinVerifyTrust, and LPE _**\\n\\nTogether, these capabilities give security teams a unified, risk-focused approach, eliminating threats where possible, mitigating when patching isn\u2019t an option, isolating to prevent compromise and even remediating with custom fixes if necessary. \\n\\n## Custom and Battle-tested Eliminations \\n\\nEvery Qualys Cloud Agent can run custom or platform-approved scripts via Qualys Custom Assessment and Remediation (CAR). We also offer various out of the box, curated, scripts for remediations, that go above and beyond simple patching use cases. \\n\\n * Build custom detections and automate compliance: \\n\\n\\n\\n\\n\\nCAR adds flexibility, with curated or custom actions, streamlining workflows, and strengthening overall security posture. \\n\\n * Manage and patch Java and be ready for the next Log4Shell event:\\n\\n\\n\\nWith Qualys TruRisk  Eliminate, teams unlock **confident execution** , enabling faster, trackable risk reduction. Thanks to the Qualys Enterprise TruRisk Platform, digital defenders now have a different feel for that final action.\\n\\n**_Explore how the TruRisk platform helps organizations to reduce cyber risk across the extended enterprise. _**\\n\\n## Measure with Precision, Communicate with Impact, Eliminate with Purpose \\n\\n**_\u201cUnited we fought and united we prevail\u201d \u2013_** _Chester Nimitz, US Chief Commander, WWII Pacific Front_ \\n\\nThroughout history, victory has gone to those willing to change their approach. Inspired leadership, intentional collaboration, relentless innovation, and a refusal to accept the status quo, are all common threads. \\n\\nFord\u2019s assembly line revolutionized production by rethinking the process entirely. Washington\u2019s spies didn\u2019t just collect intelligence; they turned it into coordinated, mission-aligned action, tactics essential to defeating a seasoned opponent. \\n\\nThe Allies shared tactics, resources, and intelligence across borders, proving that trust and prioritization could outmatch a well-equipped adversary. Prioritized workflows enable leaders to focus efforts and execute decisive strikes. As we look back at history, this discipline was key, when outnumbered\u2026 and out resourced. \\n\\nVictory doesn\u2019t come from more data or more effort, but from disciplined workflows that prioritize, coordinate, and execute with precision. Maps, trends, dashboards, and reports alone will never close the gap; only decisive, data-driven action will. \\n\\nThe Steps to TruRisk series applies these same principles to cybersecurity. \\n\\n * **Measuring** with speed, precision, and priority \\n\\n\\n * **Communicating** with impact, intelligence, and context \\n\\n\\n * **Eliminating** with confidence, purpose, _and_ authority, knowing the team has all they need to finish the job! \\n\\n\\n\\nWhen teams gain clarity on the right threats and their true impact, the path forward becomes clear. Just as D-Day\u2019s success hinged on prioritized planning, coordinated execution, and relentless persistence, eliminating cyber risk requires the same clarity and dedication. \\n\\nIt’s time to lead the shift, turn the tide, and finish the mission with Qualys TruRisk.\\n\\n* * *\\n\\n**See what eliminating risk looks like in practice. Join the conversation and turn strategy into confident execution.**\\n\\nRegister for Webinar\\n\\n* * *\\n\\n_**Ready to put the insights to work?Start your Free Trial for TruRisk Eliminate**!_\\n\\n### Our contributors\\n\\n * Marcus Burrows, Lead Technical Trainer \\n\\n\\n * Lavish Jhamb, Senior PM, Compliance Solutions \\n\\n\\n * Eran Livne, Senior Director, Endpoint Remediation”,”published”:”2025-09-23T15:00:00″,”modified”:”2025-09-23T15:00:00″,”type”:”qualysblog”,”title”:”Step 5: Eliminate Risk \u2013 Lead with Confidence”,”source”:””,”references”:””,”id”:”QUALYSBLOG:A36D5DC14FC2FB5A807F4C7981E8F4C9″,”bulletinFamily”:”blog”,”cwe”:null,”cvelist”:[],”sourceData”:””,”sourceHref”:””,”cvss”:{“score”:0,”severity”:”NONE”,”vector”:”NONE”,”version”:”NONE”},”cvss2″:{},”cvss3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””,”cvssV3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””}},”href”:”https:\/\/blog.qualys.com\/category\/product-tech\/vulnmgmt-detection-response”,”category_name”:”News”,”post_link”:””,”product”:””,”version”:””,”vendor”:””,”ai_description”:””,”ai_severity”:””,”ai_vendor”:””,”ai_product”:””,”ai_version”:””,”ai_score”:0}<\/p>\n","protected":false},"excerpt":{"rendered":"
{“lastseen”:”2025-09-23T16:51:43″,”description”:”**_\u201cWe shall not fail or falter; we shall not weaken or tire \u2026 Give us the tools and we will finish the job.\u201d_****** \u2013 Winston…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[4],"tags":[6,8,12,13,33,120,7,11,5],"class_list":["post-18769","post","type-post","status-publish","format-standard","hentry","category-category_news","tag-cve","tag-cvss","tag-exploit","tag-news","tag-none","tag-qualysblog","tag-security","tag-tapic","tag-vulnerability"],"yoast_head":"\n