Security and Compliance Weekly Subscribe

Managed Services, Vulnerability Management, Cloud Security, Leadership, Incident Response, Application security, Asset Management, Data Security, Compliance Management, Security Staff Acquisition & Development

Pragmatic Approaches to Cybersecurity Maturity, Part 1 – SCW #40

August 25, 2020

There are a lot of ways to measure/assess the level of organizational maturity of security programs. But, how do you mature your organization? We will discuss practical steps, like prioritizing the to-do list, the balance between people, process, and technology, as well as the balance between policies, standards, procedures vs. technical controls, to develop a pragmatic approach to mature your cybersecurity program.

Reference Slides: https://securityweekly.com/scw-episode-40-reference-slides/

Full episode and show notes

Announcements

Don't forget to check out our library of on-demand webcasts & technical trainings at securityweekly.com/ondemand.
We're always looking for great guests for all of the Security Weekly shows! Submit your suggestions by visiting https://securityweekly.com/guests and completing the form!

Hosts

Sr. InfoSec Consultant at Online Business Sytems

https://www.obsglobal.com/

CEO at AGNES Intelligence

http://agnesintel.com/

Executive Director at Guardedrisk

CEO at Red Lion

https://redlion.io

Related

Cloud Security for SMBs: Strategies, Risks, and Resources – Adam John – CSP #205

December 17, 2024

Jess and Adam discuss cloud security challenges for SMBs, emphasizing strategic planning, compliance with regulations like CMMC, and vendor due diligence. They highlight common pitfalls like the illusion of security and inadequate staffing while offering cost-effective solutions like virtual CISOs. Practical tips help SMBs secure their data, naviga...

Managed Services

From Hackers to Streakers – How Counterintelligence Teams are Protecting the NFL – Joe McMann – ESW #358

April 18, 2024

Protecting a normal enterprise environment is already difficult. What must it be like protecting a sports team? From the stadium to merch sales to protecting team strategies and even the players - securing an professional sports team and its brand is a cybersecurity challenge on a whole different level. In this interview, we'll talk to Joe McMann ...

Managed Services

Understanding KillNet and Recent Waves of DDoS Attacks – Michael Smith – ESW #357

April 11, 2024

In the days when Mirai emerged and took down DynDNS, along with what seemed like half the Internet, DDoS was as active a topic in the headlines as it was behind the scenes (check out Andy Greenberg's amazing story on Mirai on Wired). We don't hear about DDoS attacks as much anymore. What happened? Well, they didn't go away. DDoS attacks are a more...