Overview
Syllabus
RSAConference 2019
Laying a Foundation
An Architecture for Security Program Management
WARNING!
Defining Appropriate Controls
Popular Security Control Standards
The Center for Internet Security (CIS) Controls (cont)
Key Principles for Version 7.0 & 7.1
Controls, Measures, Metrics, Maturity
Start with Attestations
Six Sigma and the CIS Controls
Controls, Measures, and Metrics Example
More Sample Measures / Metrics (CIS Control #1)
Defined Measures / Metrics Lead to Automation
Automation Leads to Reporting
The Future of Information Security
Operationalizing Security Program Metrics
For More Information
Taught by
RSA Conference