You aren't really a security professional (or you aren't a mature one at least) until you have dove head first into some security frameworks and learned their ins and outs. The GRC side of the CISO organization is a tough one because the documentation is rough, hard to read, for a lot of people the understanding of it is quite difficult, and then you have to figure out how to structure it in a manner where you can apply it across your organization.
In today's episode we discuss security frameworks and what we feel are the pros and cons of each.
Get Consulting: bit.ly/3R04Lsr
OCISO Knowledge Base: bit.ly/3kDGVHf
OCISO Social Media
Podcast: spoti.fi/3iuSwYa
Twitter: bit.ly/3EUkDIG
LinkedIn: bit.ly/3GIDQOY
Website: bit.ly/3gwN6uO
Facebook: bit.ly/3i9Wzsn
Sponsorship Request: If you are interested in Sponsoring Office of The CISO Videos Please Email sponsors@officeoftheciso.com
Topics Discussed:
Cybersecurity Framework
NIST 800-53
SOC Type 2
NIST 800-37
NIST 800-39
NIST 7621
HIPAA
The Gramm-Leach-Bliley Act
Information Security
Cybersecurity
Негізгі бет EP 8: Security Frameworks
Пікірлер: 1