Learning Security Frameworks

Get an introduction to multiple security frameworks and learn how to bring standardization and consistency to your security practices.

Introduction

• Security frameworks
• Who uses security frameworks?
• Why are security frameworks important?
• Definitions

1. Frameworks, Regulation, and Risk

• Major security frameworks
• Domain-specific frameworks and guidance
• Maturity frameworks
• Privacy frameworks
• Regulatory frameworks
• Risk assessment

2. Security Framework Deep Dive

• PCI DSS and credit card payments
• CIS security controls
• NIST 800-53: Guidance for (US) companies
• ISO 27001/2: A global approach with certification

3. Framework Comparison

• How the frameworks compare
• Mapping the controls to one another
• Resources available for mapping controls
• Choosing a framework that is relevant to your business

4. The Core Security Set

• Understanding control families and domains
• The measures
• The assurances
• Enabling technologies
• Security mindset

Conclusion

• How to get started