BLUF: As Chief Information Security Officer, it is important to think about the way my resources areallocated. With that said, conducting a risk assessment using the NIST framework that we learned about,and allocating limited resources accordingly to address higher-priority threats.Using the NIST framework to conduct a risk assessment to help me assess the likelihood andimpact…

A big thing for publicly traded companies is that they are subject to public scrutiny and are therefore more closely watched because the public tends to have a stake in the company. As CISO, I would focus on incident response and developing a plan if the network went down, as well as crisis management with…

CIA Triad: The policy guideBLUF: When evaluating needs and use cases for potential new products and technologies, thetriad helps organizations and companies narrow their focus about how value is being provided inthree key areas: Confidentiality, Integrity, and Availability.The CIA triad essentially provides organizations with a guideline in protecting theirsensitive data and systems via 3 pillars…