How About A Cybersecurity Framework By NIST

Posted on ITSecurity Training

NIST is the National Institute of Science and Technology and CSF is the Cybersecurity Framework.  There are manypdf’s (v1.1) on this topic, but the changes in versions are not my focus.  Although I did cover this a small bit in a post from 2014: https://oversitesentry.com/cybersecurity-framework-by-nistnational-institute-of-standards-and-technology/ at that point NIST had the major points but not […]

Read more >

Cybersecurity – Where do we go from here?

Posted on ITSecurity Training

Let’s list some of the problem areas: Ransomware Phishing Backups – Restore Remote Access Cloud Computing Awareness Issues – Training If you do not prepare for the future then it will create surprises when you least expect it   or the future may make changes in ways that you will not appreciate. An example of this […]

Read more >

Security Psychology – or Risk Gambler?

Posted on ITSecurity Training

  The human factor is always underappreciated in helping decide on what can be done with our Computer Security. “Security Mental Model: Cognitive map approach” Tahani Albalawi, Kambiz Ghanzinour and Austin Melton paper: The computer security community has developed formal methods for providing security properties to systems and organizations. However, the human role has often […]

Read more >