Security Weekly Podcast Network (Audio) Why Proactive Security Is Far Better Than Patching - Erik Nost - ASW #375
Mar 24, 2026
Erik Nost, a Forrester senior analyst focused on proactive security and exposure management. He breaks down proactive security into visibility, prioritization, and remediation. Discussions cover asset visibility, shrinking zero-day windows, using LLMs responsibly, making business impact machine-readable, and practical tradeoffs in secure code generation.
AI Snips
Chapters
Transcript
Episode notes
Visibility Prioritization Remediation Are Interdependent
- Proactive security rests on three linked principles: visibility, prioritization, and remediation.
- Erik Nost explains visibility identifies what needs protection, prioritization decides what matters, and remediation closes the loop by fixing or containing risks.
Act On Controls Security Teams Actually Control
- Improve remediation by focusing on controls security teams can own, like IPS rules, monitoring, and preventative controls.
- Erik Nost advises adding detection and containment where teams lack direct patching authority to reduce attacker impact quickly.
Secure By Design Is Aspirational Not Universal
- Secure by design is the ambition but not the current reality because enterprises run legacy systems and diverse artifacts.
- Erik Nost stresses proactive security must account for live legacy systems and focus on containing impact, not only preventing every flaw.