InfoSec
The latest talk in managing security programs is the ability to make “shift left” in terms of implementing controls. Learn how DevSecOps efforts are changing how we govern security controls via greater automation tools that are readily available to leverage.
Read more
Tony UcedaVélez
Enterprise Data Security
This presentation revisits both traditional governance best practices that are still invaluable to proper data management and governance efforts, as well as practical technological controls that can support the management of data.
Control Frameworks
The rise of regulations and demand for more agile engineering practices is forcing CISOs and security programs to develop more sophisticated ways to adhere to security requirements from regulations, internal governance, and clients.
Security Controls
Throughout my testing and implementation of JEA in a private network I was able to discover more reasons why JEA is such an underused but powerful tool.
Quasi Brereton
Imagine this scenario: You are a systems engineer. You are tasked with managing user and group access controls. Your company’s two person NOC team has admin rights to perform triage work. Eventually, you discover that your company is compromised and has been for an unknown length of time.
In this two-part security governance series, we’ll take a look at the broader picture of security metrics and how to derive them from security activities.
Versprite
We are an international squad of professionals working as one.
Email
Phone
