Description: Information security has changed dramatically as we have moved from a centralized model to a distributed one. Security leaders and practicioners are facing significantly increased infosec challenges with the continued growth of IoT, mobile workforces, Cloud IaaS/DaaS/PaaS/SaaS, distributed networks and social media. In this session we will discuss not only the hard technical skills, but also the soft skills necessary for individuals and organizations to improve their IT security posture.
Frameworks such as the Cloud Security Alliance Common Body of Knowledge, the Center for Internet Security Critical Security Controls (CIS-CSC) and the NIST Cybersecurity Framework (CSF) can significantly help align an organization to widely-adopted best practices and to prioritize security and business risks. This session will provide a brief overview of how these solutions can be best applied toward IT Risk & Security Management moving forward.
Expected Outcome: Walk away with smart strategies and best practices to assess your organization's security posture, based on controls/frameworks from the CIS and NIST. Learn how these approaches can be best applied toward enhanced IT Risk & Security Management going forward.
Intended Audience: Executives, Managers, Supervisors, Architects, Technical staff.
Prerequisites:
- Basic understanding of information security concepts
- Basic understanding of business concepts is a plus