Abstract: CIS Control 3 is Data Protection and data is pretty much what's at stake for a high percentage of cyber attacks. Data is more valuable than oil and it fuels many organizations. Many of the baseline security recommendations from all of the security frameworks out there now recommend, or REQUIRE if you’re in a regulated industry such as healthcare, that certain things like full disk encryption are simply put into place no matter your risk profile. Much of what’s in the Data Protection Control represents the modern reality of cybersecurity.
Note: we split up Data Protection into two shorter podcasts (about 20 minutes each) and therefore, you will see a "part 1 & part 2".
Part 1 focuses in depth into CIS Control 3 and the Safeguards 1 -3 (formerly called sub controls) .
Co-hosts in part 1 are: Josh Franklin, Sr. Cybersecurity Engineer at Center for Internet Security (CIS) and Brian Blakely, who leads a team of fractional CISOs, where they focus on building security programs for small to medium businesses.
Josh Franklin: https://www.linkedin.com/in/joshuamichaelfranklin/
Brian Blakely: https://www.linkedin.com/in/bblakley/
Ken Tripp: https://www.linkedin.com/in/kentripp/