Episode 9: Mitigating Risk: Information Security Governance - podcast episode cover

Episode 9: Mitigating Risk: Information Security Governance

Cybersecurity Where You Are (audio)
Jun 11, 202157 minEp. 9
--:--
--:--
Listen in podcast apps:
Apple Podcasts
Spotify
Download
YouTube
Overcast
Pocket Casts
Episodes.fm
Download Metacast podcast app
Listen to this episode in Metacast mobile app
Don't just listen to podcasts. Learn from them with transcripts, summaries, and chapters for every episode. Skim, search, and bookmark insights. Learn more

Episode description

Resources:

Highlights:

  • The importance of information security governance
  • Security vs. compliance
  • Data – determining what you need and where to find it
  • Understanding risk from a decision-basis
  • Critical elements to fulfill business requirements
  • Producing value in a compliance program
  • Applying agility for continuous improvement

Good compliance = good security

Security is the practice of implementing effective technical controls to protect an organization’s digital assets. Compliance, on the other hand, is the application of that practice to meet regulatory or contractual requirements. Unfortunately, more often than not, organizations focus on compliance once a year when it’s time to certify that their “security is good.” The process of being compliant and secure should be a continuous process.

For the best experience, listen in Metacast app for iOS or Android