Are You in Control? Managing the CIS Critical Security Controls within your Enterprise

  • Thursday, 25 Jan 2018 1:00PM EST (25 Jan 2018 18:00 UTC)
  • Speakers: Matt Bromiley, Andrew Kozloski

The Center for Internet Security (CIS) Critical Security Controls present '20 most effective actions an organization can take to protect its data, employees and customers.'the controls include a wide-range of security issues that every information security leader should implement, monitor and track in order to effectively measure and manage risk. However, those that have tried to implement controls standards whether they are within the NIST, ISO, or CIS frameworks understand the immense challenges.

The implementation of security controls requires a comprehensive strategy and an investment of time, resources, and money. Security leaders need to ensure that they are able to effectively analyze their investments and that controls are in fact reducing risk. 'Countless organizations continue to invest haphazardly in their security programs and in particular in control implementation with little or no effect on their overall security posture.

In this presentation, Matt will provide:

  • An overview of the CIS Critical Security Controls
  • An in-depth examination of some of the most critical controls
  • Real world case studies of actual breaches where controls were not in place, and how this impacted the organization
  • Best practice insight into how organizations can manage and track the implementation of security controls