Episode 208 - All Good Things...
Jan 11, 2019 - 34:02
Radio and PodcastLive Radio & PodcastsTechnology
Episode 203 - Evaluating Your Security Program: Threat Mapping
Show Notes Episode 203 - Evaluating Your Security Program: Threat Mapping Why Evaluate Your Program Part of annual policy review If you don't evaluate you will never improve Continual review will help protect your budget...
About This Episode
Episode 203 - Evaluating Your Security Program: Threat Mapping is an episode from The Southern Fried Security Podcast by Martin Fisher. Show Notes Episode 203 - Evaluating Your Security Program: Threat Mapping Why Evaluate Your Program Part...
Podcast
This episode belongs to The Southern Fried Security Podcast.
Listen Online
Use the player on this page to stream the episode online.
Episode Details
Published Feb 13, 2018, 24:12 long, audio available.
Related Episodes
Continue listening to more episodes from The Southern Fried Security Podcast.
Episode 207 - On the Front Porch with Yvette and Brandon
Aug 31, 2018 - 31:33
Episode 206 - The Front Porch w/@wendynather @securityincite @jwgoerlich
Jun 24, 2018 - 01:00:58
Episode 205 - LIve from BSides Atlanta!
May 8, 2018 - 58:14
Episode 204 - Evaluating Your Security Program: Communications Plan
Mar 12, 2018 - 24:36
Episode 202: -Evaluating Your Security Program : Awareness & Education
Jan 29, 2018 - 33:36
Episode 201 - Celebration
Oct 11, 2017 - 27:51
Episode 200 - Building a Security Strategy - Part III
Sep 13, 2017 - 26:14
Questions About This Episode
What is Episode 203 - Evaluating Your Security Program: Threat Mapping about?
Show Notes Episode 203 - Evaluating Your Security Program: Threat Mapping Why Evaluate Your Program Part of annual policy review If you don't evaluate you will never improve Continual review will help protect your budget Awareness and Education is how most people in your org know the program Threat Mapping maps the outside threats to your inside controls & tech Communications is that final turn from the inside out Start At The Outside and Move Your Way In How is this different from threat modeling? Threat modeling is listing what could happen to you. Threat mapping is mapping the holes in your program. What is "Threat Mapping"? Must have a assessment management program you can't protect what you don't know about This isn't "I have a CMDB". It's actually taking actions based on what you know about what you have Map assets to known threats industry entry points technology Online threat maps What are you doing to know this? What controls do you currently have in place to mitigate or reduce the risk? Understand what your "real" threats are Apps Infrastructure 3rd parties etc Scope and prioritize - break down into areas to tackle How To Get Started Scorecard (KRI) What is important and helpful Risk Registry How To Measure Use your risk registry or GRC tool to track progress and keep management updated. You need them onboard to improve. once you have some areas mapped don't ignore them implement solid change control and change management processes keep risk scores updated so you aren't focusing on unimportant things How To Improve/Modify
Where can I listen to Episode 203 - Evaluating Your Security Program: Threat Mapping?
You can listen to Episode 203 - Evaluating Your Security Program: Threat Mapping online on Radio and Podcast. Open the player on this page to stream the available audio.
Which podcast is Episode 203 - Evaluating Your Security Program: Threat Mapping from?
Episode 203 - Evaluating Your Security Program: Threat Mapping is an episode from The Southern Fried Security Podcast by Martin Fisher.
How long is this episode?
This episode is 24:12 long.
When was this episode published?
This episode was published on Feb 13, 2018.
Can I save Episode 203 - Evaluating Your Security Program: Threat Mapping for later?
Yes. Use the heart button on the episode page to add it to your favorite episodes list.
Are there related episodes from The Southern Fried Security Podcast?
Yes. This page shows related episodes from The Southern Fried Security Podcast when more episodes are available from the podcast feed.
Quick Answers About This Episode
Where can I listen to Episode 203 - Evaluating Your Security Program: Threat Mapping?
You can listen to Episode 203 - Evaluating Your Security Program: Threat Mapping on this page when the episode audio is available from the podcast feed.
Which podcast is this episode from?
Episode 203 - Evaluating Your Security Program: Threat Mapping is from The Southern Fried Security Podcast by Martin Fisher.
What are the episode details?
Published Feb 13, 2018 and 24:12 long