What are examples of proactive cybersecurity?

Security Strategy & RoadmapThreat & Vulnerability Management
2.4k viewscircle icon2 Comments
Sort by:
VP of Information Security in Finance (non-banking)3 years ago

Although many professionals are pretty much focused on technical controls.
Logical controls are essential for transformational initiatives. Implementing security and privacy by design principles, by working on project, products and services team from the earliest stages possible and continuing to work with them across the lifecycle.
Designing services that can even gracefully fail and identifying how each product or service can be abused.

Director in Construction3 years ago

That is a huge question.  Grab a cybersecurity framework like ISO and go through it.  Lots of technical controls like password strength, MFA configuration hardening, patching.  Don’t forget about other more non- technical controls like background checks, contract items and training.

Content you might like

How are companies doing Unified Vulnerability Management? The idea is bringing all inputs (AppSec, DevSecOps, VM scanning, asset discovery etc) into one platform.  Instead of creating a homegrown solution, are there vendors that do this well?

We implemented Oracle HCM recently including Redwood.  Defining the long term plan for support, we face challenges with our Oracle Security knowledge depth specifically (defining and maintaining roles/ SOD/ SOX etc). Is there anyone who has experience in setting this up after a successful Oracle HCM plus Redwood implementation and would like to share best practices with me?

GitHub's Developer Rights Fellowship will provide legal support to developers whose source code runs afoul of the Digital Millennium Copyright Act (DMCA). How do you see this affecting open source code legislation?

It will encourage eased restrictions and more advocation on behalf of open source communities.29%

It will bring the wrong attention to DMCA practices and cause additional legal issues.52%

It will balance the scales on difficult to navigate DMCA legislation, but no changes in the foreseeable future.14%

I don't know4%

View Results

How does your organization refer to a plant stoppage for scheduled maintenance?

Shutdown24%

Turnaround40%

Outage25%

STO (Shutdown, Turnaround, and Outage)5%

Other (please comment)3%

View Results

For on premise environment, does your company run Kubernetes worker nodes on VM or BM(bare metal), and why?

Read More Comments