SCWEpisode23

From Security Weekly Wiki
Jump to navigationJump to search

Security and Compliance Weekly Episode 23 - 2020-04-07

Episode Audio

Security and Compliance Weekly Episode 23

Announcements

  • Is your Open Source code secure? Learn how to verify your code during development, not after the build in our next webcast with Synopsys. Going cloudnative? See how to integrate application security in our webcast with Signal Sciences! Register for our upcoming webcasts or virtual trainings by visiting securityweekly.com/webcasts. You can also access our on-demand library of previously recorded webcasts/trainings by visiting securityweekly.com/ondemand. Each webcast will earn you 1 CPE credit that we will submit on your behalf if you provide your ISC2 number.
  • We have officially migrated our mailing list to BACK to our original platform! We have our categories nailed down and you are now able to customize what you receive from us based on your preferences by visiting securityweekly.com/subscribe and clicking the button to join the list! Once you have joined, you will also be able to go back and update your "interests" so that we can grow with you as you progress through your journey in InfoSec!
  • We are looking for high-quality guest suggestions for our Enterprise Security Weekly podcast to fill our upcoming recording schedule! We're committed to educating and providing entertainment for the InfoSec community and we would love to hear from you about who you would like us to interview on the show! Submit your suggestions for guests by visiting securityweekly.com/guests and submitting the form! We review suggestions monthly and will reach out to you once reviewed!
  • Join Qualys for VMDR Live on April 21 at 2pm ET for a live demonstration of the game-changing Vulnerability Management, Detection & Response offering - a unified solution that integrates vulnerability management, threat prioritization and patching in a single app. Register at securityweekly.com/VMDR2020

Interview: CMMC - Part 1 - 6:00-6:45PM

Description:

Chris Golden, Board Member for the Accreditation Body, will answer questions surrounding the DOD's release of the CMMC program to keep the amount of false information to a minimum.

To view the CMMC Model, visit: https://www.acq.osd.mil/cmmc/docs/CMMC_v1.0_Public_Briefing_20200131_v2.pdf

Content:

Intro to Chris Golden, CMMC Advisory Board

Co-Chair, Infrastructure Committee Co-Chair, Finance Committee Board of Directors Bio/Intro - A little about Chris, his background, what got him into this space Overview of CMMC - background - what it is, origins, genesis, etc. - how did it come about - what is Confidential Unclassified Information (CUI) - what it looks like (the model) - capability domains - processes - practices

- what are the goals

Guest: Bio:
Chris Golden is Member, Board of Directors at CMMC-AB]
Chris is a retired USAF Colonel with more than two decades in service to the country. He split his time in the military between various flying, command and staff assignments. After retiring from the USAF, he took an executive level position in cybersecurity, protecting Wall Street from world-wide threats. He then transitioned to healthcare where he is responsible for protecting the private health data of millions of people. He holds undergraduate and graduate degrees in computer science and another Master's in strategic planning. He also holds numerous industry certifications such as CISSP, CISA among others. Chris has published on the topic of cybersecurity and been invited to numerous conferences and events to speak.

Hosts

Jeff Man - Sr. InfoSec Consultant at Online Business Systems
Josh Marpet - COO at Red Lion
Matt Alderman - CEO at Security Weekly
Scott Lyons - CEO at Red Lion

Interview: CMMC - Part 2 - 6:00-6:45PM

Description:

Chris Golden, Board Member for the Accreditation Body, continues the conversation surrounding the DOD's release of the CMMC program to keep the amount of false information to a minimum.

To view the CMMC Model, visit:

https://www.acq.osd.mil/cmmc/docs/CMMC_v1.0_Public_Briefing_20200131_v2.pdf

Content:

What to Expect from CMMC ("Marketing Pitch")

- structure of the program - how it will work - role of the Accreditation Body - what's a C3PAO? - how to get involved - how to prepare - implementation - resolving disputes/enforcement - how will it revolve

Q&A

Guest: Bio:
Chris Golden is Member, Board of Directors at CMMC-AB]
Chris is a retired USAF Colonel with more than two decades in service to the country. He split his time in the military between various flying, command and staff assignments. After retiring from the USAF, he took an executive level position in cybersecurity, protecting Wall Street from world-wide threats. He then transitioned to healthcare where he is responsible for protecting the private health data of millions of people. He holds undergraduate and graduate degrees in computer science and another Master's in strategic planning. He also holds numerous industry certifications such as CISSP, CISA among others. Chris has published on the topic of cybersecurity and been invited to numerous conferences and events to speak.

Hosts

Jeff Man - Sr. InfoSec Consultant at Online Business Systems
Josh Marpet - COO at Red Lion
Matt Alderman - CEO at Security Weekly
Scott Lyons - CEO at Red Lion

Fullaudio - None

Description:

This week, we welcome Chris Golden, Board Member for the Accreditation Body, as he will answer questions surrounding the DOD's release of the CMMC program to keep the amount of false information to a minimum!

To view the CMMC Model, visit: https://www.acq.osd.mil/cmmc/docs/CMMC_v1.0_Public_Briefing_20200131_v2.pdf Visit https://www.securityweekly.com/scw for all the latest episodes!

Follow us on Twitter: https://www.twitter.com/securityweekly

Like us on Facebook: https://www.facebook.com/secweekly



Jeff Man's Content:

Jeff Man 2-0.jpg


Template:SCW23FullaudioJeff Man

Josh Marpet's Content:

Josh Marpet-0.jpg


Template:SCW23FullaudioJosh Marpet

Matt Alderman's Content:

MattAlderman-0.png


Template:SCW23FullaudioMatt Alderman

Scott Lyons's Content:

Scott Lyons-0.jpg


Template:SCW23FullaudioScott Lyons