Security and Compliance Weekly Subscribe

Big Pet Peeves – SCW #17

February 11, 2020

This week, Jeff and the crew discuss What is Risk-Based Security? How does compliance and/or security programs/points-of-view help or hinder risk-based security efforts? How can we change this? In the Security & Compliance News, Back to the basics What is the cost of non-PCI Compliance?, Endpoint Security the Foundation to Cybersecurity, Facebook settles data breach class-action lawsuit, CCPA cited in Hanna Andersson/Salesforce breach lawsuit, and Hanna Andersson Notice of Data Breach to Consumers!

Visit https://www.securityweekly.com/scw for all the latest episodes!

Follow us on Twitter: https://www.twitter.com/securityweekly

Like us on Facebook: https://www.facebook.com/secweekly

View Show Index

Full Audio

Segments

1. The Spirit of the Law – Risk-Based Security – SCW #17

What is Risk-Based Security? How does compliance and/or security programs/points-of-view help or hinder risk-based security efforts? How can we change this? Is there a more apparent path forward to teach/educate on the importance of focusing on risk?

Hosts

Jeff Man

Jeff Man

Sr. InfoSec Consultant – Online Business Systems at Online Business Sytems

https://www.obsglobal.com/

Josh Marpet

Josh Marpet

Executive Director at RM-ISAO

Matt Alderman

Matt Alderman

VP, Product at Living Security

Scott Lyons

Scott Lyons

CEO at Red Lion

https://redlion.io

2. Endpoint Security, Facebook Lawsuit, Hanna Andersson/Salesforce Breach – SCW #17

This week in the Security & Compliance News Segment, Jeff, Scott, Josh and Matt cover the following news stories: IT, Legal, Compliance: We Need to Talk. Corollary: You need to listen, Back to the basics – What is the cost of non-PCI Compliance?, Endpoint Security the Foundation to Cybersecurity, Facebook settles data breach class-action lawsuit, CCPA cited in Hanna Andersson/Salesforce breach lawsuit, and Hanna Andersson Notice of Data Breach to Consumers.

Hosts

Jeff Man

Jeff Man

Sr. InfoSec Consultant – Online Business Systems at Online Business Sytems

https://www.obsglobal.com/

Josh Marpet

Josh Marpet

Executive Director at RM-ISAO

Matt Alderman

Matt Alderman

VP, Product at Living Security

Scott Lyons

Scott Lyons

CEO at Red Lion

https://redlion.io

Related

Managed services

Removing the B.S. from Third-Party Risk Assessments – Merike Kaeo – CFH #21

May 16, 2023

Risk assessment questionnaires are a standard practice when evaluating current or prospective third-party partners. And yet some folks may justifiably ask: How valuable are these questionnaires if there are no consequences for fudging your answers, or even outright lying? This session will examine common weaknesses and oversights in the third-party...

From Nothing to Something: Overcoming Hurdles – Larry Whiteside Jr – CSP #118

April 18, 2023

Everyone has a struggle or hurdle they will face. Your outcome is largely determined by your approach. Does this mean you will get OVER every hurdle? No. But sometimes, you can go around it or under it and still reach your final destination.

Managed services

The Rise of RegOps: The Need for Compliance Automation – Travis Howerton – ESW #313

April 13, 2023

Compliance with cyber security frameworks such as NIST, PCI, HIPAA, etc. have largely been driven by paper-based processes in Word and Excel. With the rise of cloud computing, containers, and ephemeral systems, paper-based processes can no longer keep up with the speed of business and compliance has become the new bottleneck to progress for highly...