Requirements and Recommendations
Vulnerabilities are tracked and prioritized within the current vulnerability platform. The WG-DT Lead, Business Unit Owners, or delegated unit or Unit representative is responsible for coordinating remediation efforts.
New websites and systems, or significant changes to existing websites and systems, should have critical and high severity vulnerabilities addressed prior to release to production.
For the Vulnerability Remediation Timeframe, please reference the Vulnerability Management Security Standard.