NIST SP 800-53, Revision 5 Security Controls for Information Systems and Organizations – 1 overview

NIST SP 800-53, Revision 5 Security Controls for Information Systems and Organizations – 1 overview

To download the slide go to:
https://securitycompliance.thinkific.com

NIST Special Publication 800-53, Revision 5
Security and Privacy Controls
Final Public Draft: October 2018
Final Publication: December 2018
Source: https://csrc.nist.gov/projects/risk-m…

NIST Special Publication 800-53A, Revision 5
Assessment Procedures for Security and Privacy Controls
Initial Public Draft: March 2019
Final Public Draft: June 2019
Final Publication: September 2019

There are 6 major objectives for this update—
-Making the security and privacy controls more outcome-based by changing the structure of the controls;

-Fully integrating the privacy controls into the security control catalog creating a consolidated and unified set of controls for information systems and organizations

-Separating the control selection process from the actual controls: systems engineers, software developers, enterprise architects; and mission/business owners

-Promoting integration with different risk management and cybersecurity approaches and lexicons, including the Cybersecurity Framework

-Clarifying the relationship between security and privacy to improve the selection of controls necessary to address the full scope of security and privacy risks
https://www.youtube.com/watch?v=hWWILCZbDho

How to Make 6 Figures in IT Security (cybersecurity) – Do you want this?

Course site: https://securitycompliance.thinkific.com I am thinking of doing a course on how to make 6 figures in IT Security. What do you think? Is this something you would be interested in? This is something I know a lot about. I would explain:

The landscape of IT Security

Career paths in IT Security

How to choose the right path

How to prepare for that path

What kinds of IT security jobs make 6 figures

What places and companies pay 6 figures

What certifications, degrees and experience you need to start

How to build a bad ass IT security resume

where to post it how to respond once offers start coming in

Risk Management Framework DIACAP RMF Information Assurance Jobs

Role: DIACAP Compliance Engineer
Location: Tarrytown, NY
Duration: 6+ months

Enterprise Solution Inc.
500 E. Diehl Road, Suite 130, Naperville, IL 60563
Office: # 630-214-9485
E-Mail : pradyut@enterprisesolutioninc.com
Gmail : pradyut10.esi@gmail.com

Title: Information Assurance Lead
Location: Aberdeen, MD
Client: Federal
Duration: Full Time

Home


8251 Greensboro Drive, 9th Floor

McLean VA 22102
yogeshk@etalentnetwork.com

Office: (877) 715-3865 Ext.328

I get people contacting me every week about jobs all around the US! Today, I am going to show you a couple that I received recently. I hope that it will give you some idea of what employers and contracts look for in security compliance professionals.

What is payment card industry PCI data security standard DSS?

What is payment card industry PCI data security standard DSS?

I got the chance to talk to a Payment Card Industry (PCI) professional. James is in the PCI IT industry and tells about it from inside the field. It is a great opportunity to learn about this growing career path. We talked about how the PCI security standard compares to the Risk Management Framework. Here are some of the resources we talked about: https://www.pcisecuritystandards.org/https://www.pcicomplianceguide.org/ Enroll to learn MORE on security compliance: https://securitycompliance.thinkific.com

NIST 800 37 Revision 2 – RMF for Information Systems and Organizations: A System Life Cycle Approach for Security and Privacy

Download the presentation in this Video & Learn more here:

http://securitycompliance.thinktific.com

This is an overview of NIST 800-37 Revision 2. I discuss the changes, the sources and Cybersecurity Framework.

NIST Special Publication 800-37, Revision 2
Risk Management Framework for Security and Privacy
Initial Public Draft: May 2018
Final Public Draft: July 2018
Final Publication: October 2018

NIST 37-800 Rev 2:
http://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-37r1.pdf

Executive Order:
https://www.whitehouse.gov/presidential-actions/presidential-executive-order-strengthening-cybersecurity-federal-networks-critical-infrastructure/

OMB:
https://www.whitehouse.gov/sites/whitehouse.gov/files/omb/memoranda/2017/M-17-25.pdf

Cybersecurity Framework:
https://www.nist.gov/sites/default/files/documents/cyberframework/cybersecurity-framework-021214.pdf

NIST SP 800-53 (Revision 5):
https://csrc.nist.gov/publications/detail/sp/800-53/rev-5/draft

Source of Changes:
President’s Executive Order on Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure
Office of Management and Budget Memorandum M-17-25 – next-generation Risk Management Framework (RMF) for systems and organizations
NIST SP 800-53 Revision 5 Coordination

Affiliate Link How to – CupidMedia (part a)

Looking for a good dating site? Try cupid Media:
http://efilipinowomen.com/whereweMET (filipinocupid)
http://efilipinowomen.com/latinAmericanWomen (Latin American Cupid)

If you want to create your own dating affiliate links try CupidMedia:
http://www.cupidmedia.com/en/affiliates

In this video I demonstrate how to create a cupidmedia affiliate account and post them on your Youtube channel.

Affiliate Link How to – CupidMedia (part b)

Looking for a good dating site? Try cupid Media:
http://efilipinowomen.com/whereweMET (filipinocupid)
http://efilipinowomen.com/latinAmericanWomen (Latin American Cupid)

If you want to create your own dating affiliate links try CupidMedia:
http://www.cupidmedia.com/en/affiliates

In this video I demonstrate how to create a cupidmedia affiliate account and post them on your Youtube channel.

“Nigerian Prince” now wants Bitcoin (scam)

The Nigerian Prince email scam went a little something like this:

You send his highness just a few hundred dollars in exchange for millions.  You could trust him because he was a rich prince, but he had been displaced temporarily.

Well, it is basically the same scam but instead of dollars, they want Bitcoin.

With these scams, you send the money, they disappear.  People are still hearing about these scams for the first time so they are still losing millions over this.

sources:

https://www.bbb.org/new-york-city/get-consumer-help/articles/the-nigerian-prince-old-scam-new-twist/

1 2 3 174