The Cybersecurity Framework Version 1.1 makes guidelines clearer for organizations by adding self-assessment steps, improving supply chain security, and refining rules for identity and access control. In my future workplace, I would use it to check for security risks, make sure products and services we buy are safe, and protect systems by controlling who has…

As the CISO of a publicly traded company, making sure our systems are always available is super important. Availability basically means that employees, customers, and investors can access our systems whenever they need to. To keep things running smoothly, I would start with regular automated backups. This way, if something goes wrong, we can restore…

The CIA TriadThe CIA Triad is one of the most widely used models in information security. It stands forConfidentiality, Integrity, and Availability. Together, these three concepts form the foundation for designing and evaluating security policies and practices.ConfidentialityConfidentiality focuses on keeping sensitive information private and ensuring only authorized individuals can access it. Methods such as encryption,…