Mapping Across an Ocean of Security Frameworks, Part 2 – Thomas Sager, Tony Sager – SCW #92
Tony and Thomas will discuss the importance, value, and challenge of cross-mapping security frameworks, and the rationale and process used by CIS to create end support mapping, and some real-world examples and some real-life problems.
Announcements
Don't forget to check out our library of on-demand webcasts & technical trainings at securityweekly.com/ondemand.
InfoSec World 2021 is proud to announce its keynote lineup for this year’s event! Hear from Robert Herjavec plus heads of security at the NFL, TikTok, U.S. Department of Homeland Security, Stanford University, and more… Plus, Security Weekly listeners save 20% on Digital Pass registration! Visit https://securityweekly.com/isw2021 to register now!
Guests
Tony Sager is a Senior VP for the Center for Internet Security. He led the development of the CIS Controls, a community consensus project to identify and support best practices in cybersecurity. His “volunteer army” identifies practices that will stop the vast majority of attacks seen today, and he leads projects that will share, scale, and sustain these practices for worldwide adoption.
Tony retired from the National Security Agency in 2012 after 34 years as a mathematician, software vulnerability analyst, and executive manager. Tony oversaw all NSA Red and Blue Teams, as well as all security product evaluation teams. He helped guide the Agency’s top talent development programs, and founded the Vulnerability Analysis and Operations Group (NSA’s premier technical organization in defense).
Thomas Sager is an Associate Cybersecurity Engineer for CIS. In this role, he is dubbed as the team cryptographer for mapping of the CMMC and PCI frameworks to the CIS Controls. Sager is also working on the Controls Assessment Specification to provide a common understanding of what should be measured in order to verity that CIS Sub-Controls are properly implemented. Prior to joining the CIS, Sager was a commercial security consultant under a federal contractor, greatly benefiting from the opportunity to work within a variety of client environments.
Hosts
