Abstract: A system includes a security and vulnerability analysis processor, one or more endpoint devices in communication with the security and vulnerability analysis processor through a communication network, and a vulnerability data ingestion processor configured to obtain, from one or more data sources, security data associated with the one or more endpoint devices. The security and vulnerability analysis processor includes a machine learning model configured to generate predictions about the risk impact of conducting vulnerability remediations to a particular endpoint device of the one or more endpoint devices. The machine learning model is trained using a training set comprising the security data associated with the one or more endpoint devices.