From Security Weekly Wiki
Revision as of 13:53, 11 May 2020 by Matt (talk | contribs) (→‎Articles)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigationJump to search


  1. Know the Business’s Operational Surfaces
  2. Know Your Business’s Assets
  3. Know Your Control Portfolio
  4. Know Your Resources
  5. Know Your ‘Must-Haves’ and Your ‘Nice-to-Haves’
  1. Hold regular weekly or biweekly webinars where you talk to them about different safety tips, different things to be aware of that are both for their work life, but also their personal life
  2. Offer 'office hours' to make a security Genius Bar available and encourage people to join your security team on video conferences to address problems or concerns
  3. Make sure that you don't end up having employees storing your data out of regulatory compliance on thumb drives, portable hard drives and personal cloud instances
  • Good Leadership Is About Communicating “Why” - In an ongoing crisis, clear communication is more important and more difficult than when things seem normal. But if we present without addressing our audience’s core questions of what, how, and why, we’ll sow more confusion than we bring clarity. But we must also start with why. Here are three strategies to help you get to the heart of the why in your next presentation:
  1. Ask some good what questions
  2. Follow up with because
  3. State alternate perspectives
  1. Secure remote users
  2. Identify risk as quickly as possible
  3. Work nimbly
  4. Stay vigilant and educate against new phishing techniques