Artwork

Tracy Holtz에서 제공하는 콘텐츠입니다. 에피소드, 그래픽, 팟캐스트 설명을 포함한 모든 팟캐스트 콘텐츠는 Tracy Holtz 또는 해당 팟캐스트 플랫폼 파트너가 직접 업로드하고 제공합니다. 누군가가 귀하의 허락 없이 귀하의 저작물을 사용하고 있다고 생각되는 경우 여기에 설명된 절차를 따르실 수 있습니다 https://ko.player.fm/legal.
Player FM -팟 캐스트 앱
Player FM 앱으로 오프라인으로 전환하세요!

Discussing the Cybersecurity Executive Order with MJ Shoer and Brett Scott

42:17
 
공유
 

Manage episode 299179787 series 2903893
Tracy Holtz에서 제공하는 콘텐츠입니다. 에피소드, 그래픽, 팟캐스트 설명을 포함한 모든 팟캐스트 콘텐츠는 Tracy Holtz 또는 해당 팟캐스트 플랫폼 파트너가 직접 업로드하고 제공합니다. 누군가가 귀하의 허락 없이 귀하의 저작물을 사용하고 있다고 생각되는 경우 여기에 설명된 절차를 따르실 수 있습니다 https://ko.player.fm/legal.

In this special edition of The Holtz Story, we’re joined by MJ Shoer SVP, Executive Director, CompTIA ISAO, and Brett Scott Director Security Training and Enablement at Tech Data to discuss the Biden Administration’s Cybersecurity Executive Order. This episode covers a lot of ground, from the evolution of the Defense in Depth (DiD) mindset to zero-trust, threat and intelligence sharing, data and metrics, ratings, and more.

Listen in as Tracy, MJ, and Brett discuss how the executive order spells out zero-trust, how it calls for an evolution of the DiD mindset. MJ points out that it is impossible to set up a perimeter bad actors can’t penetrate, so embracing zero-trust makes sense.

The conversation then shifts to how the government often has early insight into potential threats, and they need to share this information sooner and more effectively. Brett adds that the bad guys share information quite effectively, precisely what the government needs to do.

Brett shifts the conversation again to data and metrics and how they should lead your cybersecurity strategy. You need to know what’s going on – so you know what to do about it. MJ believes automation holds promise but isn’t the sole cure. MJ also adds cybersecurity is a team sport, and the good guys should work together. There’s an industry opportunity to do this right now without regulation.

Tracy introduces the topic of ratings for security frameworks. MJ shares that he believes there need to be some standards developed on what represents an adequate security framework. What’s the minimum? What’s advanced? Brett points to CISA, the Cybersecurity & Infrastructure Security Agency, and how they are leveraging various frameworks that can be used as benchmarks.

We end with a discussion of cyber insurance and how it could push the adoption of basic security frameworks. Organizations like CompTIA and distributors like Tech Data are working together to document what CISOs should be asking and creating education programs to help.

We hope you enjoy the show. If you do, please share it with colleagues and remember to subscribe using your favorite podcast platform (I.e., iTunes, Stitcher, Spotify, Google Play, etc.).

  continue reading

28 에피소드

Artwork
icon공유
 
Manage episode 299179787 series 2903893
Tracy Holtz에서 제공하는 콘텐츠입니다. 에피소드, 그래픽, 팟캐스트 설명을 포함한 모든 팟캐스트 콘텐츠는 Tracy Holtz 또는 해당 팟캐스트 플랫폼 파트너가 직접 업로드하고 제공합니다. 누군가가 귀하의 허락 없이 귀하의 저작물을 사용하고 있다고 생각되는 경우 여기에 설명된 절차를 따르실 수 있습니다 https://ko.player.fm/legal.

In this special edition of The Holtz Story, we’re joined by MJ Shoer SVP, Executive Director, CompTIA ISAO, and Brett Scott Director Security Training and Enablement at Tech Data to discuss the Biden Administration’s Cybersecurity Executive Order. This episode covers a lot of ground, from the evolution of the Defense in Depth (DiD) mindset to zero-trust, threat and intelligence sharing, data and metrics, ratings, and more.

Listen in as Tracy, MJ, and Brett discuss how the executive order spells out zero-trust, how it calls for an evolution of the DiD mindset. MJ points out that it is impossible to set up a perimeter bad actors can’t penetrate, so embracing zero-trust makes sense.

The conversation then shifts to how the government often has early insight into potential threats, and they need to share this information sooner and more effectively. Brett adds that the bad guys share information quite effectively, precisely what the government needs to do.

Brett shifts the conversation again to data and metrics and how they should lead your cybersecurity strategy. You need to know what’s going on – so you know what to do about it. MJ believes automation holds promise but isn’t the sole cure. MJ also adds cybersecurity is a team sport, and the good guys should work together. There’s an industry opportunity to do this right now without regulation.

Tracy introduces the topic of ratings for security frameworks. MJ shares that he believes there need to be some standards developed on what represents an adequate security framework. What’s the minimum? What’s advanced? Brett points to CISA, the Cybersecurity & Infrastructure Security Agency, and how they are leveraging various frameworks that can be used as benchmarks.

We end with a discussion of cyber insurance and how it could push the adoption of basic security frameworks. Organizations like CompTIA and distributors like Tech Data are working together to document what CISOs should be asking and creating education programs to help.

We hope you enjoy the show. If you do, please share it with colleagues and remember to subscribe using your favorite podcast platform (I.e., iTunes, Stitcher, Spotify, Google Play, etc.).

  continue reading

28 에피소드

모든 에피소드

×
 
Loading …

플레이어 FM에 오신것을 환영합니다!

플레이어 FM은 웹에서 고품질 팟캐스트를 검색하여 지금 바로 즐길 수 있도록 합니다. 최고의 팟캐스트 앱이며 Android, iPhone 및 웹에서도 작동합니다. 장치 간 구독 동기화를 위해 가입하세요.

 

빠른 참조 가이드