Episode 208 - All Good Things...
Jan 11, 2019 - 34:02
Radio and PodcastLive Radio & PodcastsTechnology
Episode 200 - Building a Security Strategy - Part III
Episode 200 - Building A Security Strategy - Part III Recap Strategy vs Policy Understand the business of your Business Know who your stakeholders really are Capability = (Tech + Service) * Process Crawl, Walk, Run It Ta...
About This Episode
Episode 200 - Building a Security Strategy - Part III is an episode from The Southern Fried Security Podcast by Martin Fisher. Episode 200 - Building A Security Strategy - Part III Recap Strategy vs Policy Understand the business of your Bu...
Podcast
This episode belongs to The Southern Fried Security Podcast.
Listen Online
Use the player on this page to stream the episode online.
Episode Details
Published Sep 13, 2017, 26:14 long, audio available.
Related Episodes
Continue listening to more episodes from The Southern Fried Security Podcast.
Episode 207 - On the Front Porch with Yvette and Brandon
Aug 31, 2018 - 31:33
Episode 206 - The Front Porch w/@wendynather @securityincite @jwgoerlich
Jun 24, 2018 - 01:00:58
Episode 205 - LIve from BSides Atlanta!
May 8, 2018 - 58:14
Episode 204 - Evaluating Your Security Program: Communications Plan
Mar 12, 2018 - 24:36
Episode 203 - Evaluating Your Security Program: Threat Mapping
Feb 13, 2018 - 24:12
Episode 202: -Evaluating Your Security Program : Awareness & Education
Jan 29, 2018 - 33:36
Episode 201 - Celebration
Oct 11, 2017 - 27:51
Questions About This Episode
What is Episode 200 - Building a Security Strategy - Part III about?
Episode 200 - Building A Security Strategy - Part III Recap Strategy vs Policy Understand the business of your Business Know who your stakeholders really are Capability = (Tech + Service) * Process Crawl, Walk, Run It Takes A Village The Question is "How do I make one?" Tech Tech, by itself, only consumes electricity and turns cool air into warm air So many choices…. The tech selection is the *least* critical one for developing a capability This is the "Stuff You Have To Do" Usually determined by regulation, policy, or corporate edict Describes a desired outcome - not how to get there Examples include "Malware Detection", "Email Security" Service How you do the crazy things you do Security is not a One-Off - things must be repeatable and consistent Process Describes value team brings to org While tech and service selection is important the biggest improvement usually comes from better process Capability Capability = (Tech + Service) * Process Armorguy's Maxim of Life: "Start small and iterate larger" Try to do to much out of the gate and you WILL fail Define success criteria for each stage that allows for error and learning Crawl, Walk, Run Security cannot exist as an island Interdependence with business units is key - if you don't you are the foreigner and will be rejected The relationship with IT Operations is going to be wonky at first It Takes A Village Where do you look for more info? Strategy - It's What CISOs Do…
Where can I listen to Episode 200 - Building a Security Strategy - Part III?
You can listen to Episode 200 - Building a Security Strategy - Part III online on Radio and Podcast. Open the player on this page to stream the available audio.
Which podcast is Episode 200 - Building a Security Strategy - Part III from?
Episode 200 - Building a Security Strategy - Part III is an episode from The Southern Fried Security Podcast by Martin Fisher.
How long is this episode?
This episode is 26:14 long.
When was this episode published?
This episode was published on Sep 13, 2017.
Can I save Episode 200 - Building a Security Strategy - Part III for later?
Yes. Use the heart button on the episode page to add it to your favorite episodes list.
Are there related episodes from The Southern Fried Security Podcast?
Yes. This page shows related episodes from The Southern Fried Security Podcast when more episodes are available from the podcast feed.
Quick Answers About This Episode
Where can I listen to Episode 200 - Building a Security Strategy - Part III?
You can listen to Episode 200 - Building a Security Strategy - Part III on this page when the episode audio is available from the podcast feed.
Which podcast is this episode from?
Episode 200 - Building a Security Strategy - Part III is from The Southern Fried Security Podcast by Martin Fisher.
What are the episode details?
Published Sep 13, 2017 and 26:14 long