Prioritization by our COO Martin Tartarelli

September 2, 2023

Our COO, Martin Tartarelli, recently delivered a lecture on Triage for the Insurtech Chamber, providing valuable insights into cybersecurity for insurance business owners. During the lecture, he emphasized the importance of prioritizing vulnerabilities based on their context.

Martin explained that the urgency of a vulnerability is not always indicative of its risk level. Noisy, frequent, and non-urgent vulnerabilities may be classified as high-priority but are often difficult to exploit. Therefore, he stressed the need to consider vulnerabilities within their proper context, prioritizing those with the highest chances of being exploited and potential impact. 

In his own words, Martin stated, “Attempting to address all critical vulnerabilities is a mistake, especially for large companies. Are they all equally critical? It’s crucial to assess the context within vulnerability management platforms to prioritize effectively.”

For more information about the workshop, you can find additional details Watch the live session on YoutubeThank you for the invite!

Nuestro COO, Martin Tartarelli, recientemente impartió un taller sobre Triage para la Cámara Insurtech, brindando valiosas perspectivas sobre ciberseguridad para los propietarios de negocios de seguros. Durante la conferencia, enfatizó la importancia de priorizar las vulnerabilidades según su contexto.

Martin explicó que la urgencia de una vulnerabilidad no siempre es indicativa de su nivel de riesgo. Las vulnerabilidades ruidosas, frecuentes y no urgentes pueden clasificarse como de alta prioridad, pero a menudo son difíciles de explotar. Por lo tanto, hizo hincapié en la necesidad de considerar las vulnerabilidades dentro de su contexto adecuado, priorizando aquellas con las mayores posibilidades de ser explotadas y con un posible impacto.

En sus propias palabras, Martin afirmó: “Intentar abordar todas las vulnerabilidades críticas es un error, especialmente para las grandes empresas. ¿Son todas igualmente críticas? Es crucial evaluar el contexto dentro de las plataformas de gestión de vulnerabilidades para priorizar de manera efectiva”.

Para obtener más información sobre el taller, puedes encontrar detalles adicionales acá 

Y ver el video completo!

¡Gracias por la invitación!

Continue Reading

The latest handpicked blog articles
Check all articles

Our team’s vulnerabilities disclosures 2024

Our security research team actively investigates vulnerabilities in widely used technologies, with a strong focus on network infrastructure and embedded systems. Throughout 2024, our researchers reported multiple security issues affecting

January 8, 2026
Read article

Ekoparty 2025: otra edición, nuevas conexiones y la misma pasión por hackear

Cada año, la Ekoparty nos recuerda por qué amamos lo que hacemos.Nos preparamos con la misma energía de siempre: para reencontrarnos con la comunidad, compartir lo que investigamos, aprender de otros y,

January 6, 2026
Read article

EmploLeaks: Finding Leaked Employees for the WinWebinar led by Gabriel Franco

Gabriel Franco is our Head of Cybersecurity Services and introduces this new open-source tool, presented at Black Hat Arsenal. Emploleaks enables the collection of personal information using Open Source Intelligence

December 28, 2025
Read article

Stay Informed, Subscribe to Our Newsletter

Enter your email and never miss timely alerts and security guidance from the experts at Faraday.

Faraday provides a smarter way for Large Enterprises, MSSPs, and Application Security Teams to get more from their existing security ecosystem.

Headquarters

  • 3310 Mary St Suite 501
Miami, FL 33133, USA
  • +1 904 715 4284

Research Lab & Dev

  • Bolivar 238 2° Floor
Buenos Aires, C1066AAF
Argentina
  • +54 11 4331 0469

Solutions

Open Source

© 2025 Faraday Security. All rights reserved.
Terms and Conditions | Privacy Policy