From Security Weekly Wiki
Revision as of 16:02, 24 March 2020 by Paul Asadoorian (talk | contribs) (Added By Paul's Craptastic PPWorks Code)
Jump to navigationJump to search

Security and Compliance Weekly Episode 22 - 2020-03-24

Episode Audio

Security and Compliance Weekly Episode 22


  • Register for our upcoming webcasts and virtual trainings by visiting selecting the webcast/training drop down from the top menu bar and clicking registration. In our next webcast with Gravwell, we will cut through the marketing buzzwords and teach you about collecting & analyzing logs in hybrid cloud environments.
  • CyberSecurity Exchange Day hosted by OSHEAN and the Pell Center was originally scheduled for Wednesday, March 18th and has currently been postponed. The new date is still TBD and we will keep you posted as soon as we hear more!
  • SecureWorld Boston was scheduled for March 25th & 26th at the Hynes Convention Center. The event has been postponed until further notice. We will keep you in the loop as soon as we know more!
  • InfoSecWorld 2020 was originally scheduled for March 30 - April 1, 2020 at the Disney Contemporary Resort! This conference has been rescheduled for June 22nd-24th due to COVID-19. Security Weekly listeners still save 15% off the InfoSec World Main Conference or World Pass! Visit, click the register button to register with our discount code or the schedule button to sponsor a micro-interview!

Interview: Compliance Risk Challenges - 6:00-6:45PM


David Walter from RSA will join us to discuss the following:

-The shift in the enterprise from compliance-based focused initiatives to risk-based ones -Regulatory changes that are impacting organizations security program/management efforts

-Challenges/Successes associated with automating compliance monitoring efforts/continuous compliance monitoring


Interview: Nemours Use Of RSA Archer To Manage Compliance Risk - 6:00-6:45PM


Customer perspective on the three topics discussed with RSA in first segment

Also: -What is your view of security vs. compliance vs. risk? -What drives your security program initiatives?

-What are the biggest challenges in administering a security program?

Guest: Bio:
Kevin Haynes is Chief Privacy Officer at Nemours Childrens Health System]
Kevin Haynes is the Chief Privacy Officer at The Nemours Foundation. He is responsible for all aspects of information protection for patients, families, employees, third parties, and the organization's information assets. As one of the nation's premier pediatric health care systems, Nemours provides world-class clinical care in six states. The scope of his responsibilities includes managing compliance of federal, state, and industry laws and regulations, coordinating with operations across the health system, integrating business operations and technology, developing and implementing information protection strategies, creating and implementing pragmatic and practical practices, and governance for effective information management. Mr. Haynes has been a consultant, speaker, instructor, and compliance and technology professional for over 20 years.


Jeff Man - Sr. InfoSec Consultant at Online Business Systems
Josh Marpet - COO at Red Lion
Matt Alderman - CEO at Security Weekly
Scott Lyons - CEO at Red Lion