Sign up to save your podcasts
Or
Share CCT 090: Navigating Security Compliance and Vulnerability Management (CISSP Domain 4.5)
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
CCT 090: Navigating Security Compliance and Vulnerability Management (CISSP Domain 4.5)
Send us a text
Ready to elevate your cybersecurity knowledge? Buckle up as we, your hosts, dig deep into the realm of security operations, focusing on the time-saving 80-20 rule. We're discussing how automation can handle 80% of benign events, leaving your SOC teams to tackle the crucial 20%. We also delve into the intriguing concept of detection as a code and the role of scalable business context in data ingestion.
How about understanding the essence of penetration testing and vulnerability scanning? We'll guide you through the diverse types of penetration tests - pre-deployment and post-engagement retesting. You'll get a handle on the criticality of both internal and external vulnerability scanning, as well as the need for an incident response plan to uncover unauthorized devices in your environment. That's not all! We'll explore how to leverage external resources for vulnerability scanning efficiently, highlighting threat intelligence services, vendor communication, and applicability assessments.
As we wind up, we'll share effective strategies for risk mitigation, emphasizing the need for documentation and risk-based decision-making in creating robust defense layers. You'll gain insights into the importance of service level agreements and proper management of expectations with service providers, verifying patches before deployment, and regular review of documentation. And because we believe in your growth, we cap it off with some essential tips for acing your CISSP exam and identifying top-notch content to excel in your cybersecurity role. This episode is packed full of expert insights and practical tips to help you step up your cybersecurity game!
Gain exclusive access to 360 FREE CISSP Practice Questions delivered directly to your inbox! Sign up at FreeCISSPQuestions.com and receive 30 expertly crafted practice questions every 15 days for the next 6 months—completely free! Don’t miss this valuable opportunity to strengthen your CISSP exam preparation and boost your chances of certification success. Join now and start your journey toward CISSP mastery today!
View all episodes
By Shon Gerber, vCISO, CISSP, Cybersecurity Consultant and Entrepreneur
4.3
2626 ratings
Send us a text
Ready to elevate your cybersecurity knowledge? Buckle up as we, your hosts, dig deep into the realm of security operations, focusing on the time-saving 80-20 rule. We're discussing how automation can handle 80% of benign events, leaving your SOC teams to tackle the crucial 20%. We also delve into the intriguing concept of detection as a code and the role of scalable business context in data ingestion.
How about understanding the essence of penetration testing and vulnerability scanning? We'll guide you through the diverse types of penetration tests - pre-deployment and post-engagement retesting. You'll get a handle on the criticality of both internal and external vulnerability scanning, as well as the need for an incident response plan to uncover unauthorized devices in your environment. That's not all! We'll explore how to leverage external resources for vulnerability scanning efficiently, highlighting threat intelligence services, vendor communication, and applicability assessments.
As we wind up, we'll share effective strategies for risk mitigation, emphasizing the need for documentation and risk-based decision-making in creating robust defense layers. You'll gain insights into the importance of service level agreements and proper management of expectations with service providers, verifying patches before deployment, and regular review of documentation. And because we believe in your growth, we cap it off with some essential tips for acing your CISSP exam and identifying top-notch content to excel in your cybersecurity role. This episode is packed full of expert insights and practical tips to help you step up your cybersecurity game!
Gain exclusive access to 360 FREE CISSP Practice Questions delivered directly to your inbox! Sign up at FreeCISSPQuestions.com and receive 30 expertly crafted practice questions every 15 days for the next 6 months—completely free! Don’t miss this valuable opportunity to strengthen your CISSP exam preparation and boost your chances of certification success. Join now and start your journey toward CISSP mastery today!
More shows like CISSP Cyber Training Podcast - CISSP Training Program
View all
Risky Business
361 Listeners
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
628 Listeners
Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec
367 Listeners
CISSP Training
16 Listeners
Hacked
180 Listeners
CyberWire Daily
1,007 Listeners
Smashing Security
311 Listeners
Malicious Life
927 Listeners
Darknet Diaries
7,864 Listeners
Cybersecurity Today
169 Listeners
CISO Series Podcast
187 Listeners
Hacking Humans
314 Listeners
Defense in Depth
74 Listeners
Cyber Security Headlines
129 Listeners
Hacker And The Fed
158 Listeners