Hot Topics

CIS CSC

2019 Update on frameworks, standards, and regulations for infosec

| | 23 NYCRR 500, CIS CSC, CMM, CMM-I, Cobit, Critical Security Controls, cybersecurity framework, frameworks, ISO/IEC 27001, ITIL, NIST, NIST CsF, PCI DSS, pri, regulations
At the 2019 BSides Tampa Security conference I did a talk on 2019 Updates on frameworks, standards, and regulations for infosec. Over the last year several new and updated frameworks and regulations ...
Michael on Security

Critical Security Controls v7 RELEASED

| | CIS CSC, Critical Security Controls, CSC, SANS, SANS Top 20, security bloggers network
I have previously posted on the Critical Security Controls, which many still incorrectly called the "SANS Top 20" and the like, tho SANS hasn't been managing them for some time. The current ...
Michael on Security

March Updates on Frameworks & Standards

| | CIS CSC, CSC, FISMA, frameworks, NIST, NIST CsF, security bloggers network
Last month I posted some information on several information security framework/standards being updated and sense then there have been updated on all of them. So here we go:NIST CSF v1.1. The second ...
Michael on Security

Framework/standard updates coming

| | CIS CSC, Critical Security Controls, CSC, cybersecurity framework, FISMA, frameworks, NIST, NIST CsF
Well, it's early 2018 and there are several information security framework/standards being updated:NIST CSF v1.1.  The second draft was released at the end of 2017, and we just wrapped up the comment ...
Michael on Security

Secure Guardrails