Security frameworks and standards can be the blessing or the malediction. On the one hand we need a standardized way of looking at and communicating about security and a common yard stick for assessing an organization's security stance, gap analysis and comparing organizations. On the other hand, security standards can be voluminous piles of paper that everyone talks about and no one reads, let alone actually implements.
The National Institute of Standards and Technology has a good reputation for producing workable standards that people actually use, and their relatively new Framework for Improving Critical Infrastructure Cybersecurity is on course for becoming the de facto standard in cybersecurity.
In this real training for free ™ webinar I will introduce you to the NIST with the help of the actual program manager for the framework at the NIST – Matt Barrett.
Matt Barrett serves as Program Manager for the NIST Cybersecurity Framework ("Framework") to fulfill Presidential Executive Order 13636 - Improving Critical Infrastructure Cybersecurity. The Framework provides an information security program management lexicon, expressed in terms of cybersecurity outcomes. Mr. Barrett leads the program through program planning, team oversight and coordination, and outreach to industry and Federal organizations seeking to learn more about the Framework.
Matt has kindly agreed to join us live for this event and educate us about the Framework’s use and value.
You will learn how the Framework is designed to scale from small to large organizations of any type – commercial as well as government -- and to help you facilitate improving your cybersecurity in a phased approach based on priorities. This pragmatic, flexible approach is one of the things I like best about the framework.
We will discuss how the framework provides a common taxonomy and mechanism for organizations to:
- Describe their current cybersecurity posture;
- Describe their target state for cybersecurity;
- Identify and prioritize opportunities for improvement within the context of a continuous and repeatable process;
- Assess progress toward the target state;
- Communicate among internal and external stakeholders about cybersecurity risk
You will learn about the 3 main components of the framework:
- Framework Core
- Framework Profile
- Implementation Tiers
This is a special opportunity to learn about the increasingly important NIST Cybersecurity Framework from someone intimately acquainted with its development and content. Dell Software is an active proponent of the Framework and has kindly sponsored and facilitated this webinar. Dell will briefly show how their technology can help you ensure an effective cybersecurity implementation.
Don't miss this real training for free ™ event. Please register now.