In the past, security professionals played catch-up by implementing controls to deal with new threats. This allowed zero-day successes and successful attacks against resources when only the attackers knew of one or more vulnerabilities in our network. Organizations that understand that we cant stop all business continuity events give equal importance to vulnerability management, monitoring solutions, and response processes. The following is a list of nine areas organizations should include when managing threats and associated risks. The solutions listed in this article are not all inclusive.”]
Source: https://www.csoonline.com/article/3089439/9-critical-controls-for-todays-threats.html