An award-winning cannabis podcast for women, by women. Hear joyful stories and useful advice about cannabis for health, well-being, and fun—especially for needs specific to women like stress, sleep, and sex. We cover everything from: What’s the best weed for sex? Can I use CBD for menstrual cramps? What are the effects of the Harlequin strain or Gelato strain? And, why do we prefer to call it “cannabis” instead of “marijuana”? We also hear from you: your first time buying legal weed, and how ...
…
continue reading
محتوای ارائه شده توسط Shon Gerber, vCISO, CISSP, Cybersecurity Consultant and Entrepreneur, Shon Gerber, VCISO, CISSP, and Cybersecurity Consultant. تمام محتوای پادکست شامل قسمتها، گرافیکها و توضیحات پادکست مستقیماً توسط Shon Gerber, vCISO, CISSP, Cybersecurity Consultant and Entrepreneur, Shon Gerber, VCISO, CISSP, and Cybersecurity Consultant یا شریک پلتفرم پادکست آنها آپلود و ارائه میشوند. اگر فکر میکنید شخصی بدون اجازه شما از اثر دارای حق نسخهبرداری شما استفاده میکند، میتوانید روندی که در اینجا شرح داده شده است را دنبال کنید.https://fa.player.fm/legal
مشابه CISSP Cyber Training Podcast - CISSP Training Program
Everyone has a dream. But sometimes there’s a gap between where we are and where we want to be. True, there are some people who can bridge that gap easily, on their own, but all of us need a little help at some point. A little boost. An accountability partner. A Snooze Squad. In each episode, the Snooze Squad will strategize an action plan for people to face their fears. Guests will transform their own perception of their potential and walk away a few inches closer to who they want to become ...
…
continue reading
The London School of Economics and Political Science public events podcast series is a platform for thought, ideas and lively debate where you can hear from some of the world's leading thinkers. Listen to more than 200 new episodes every year.
…
continue reading
The key to learning Korean is how easy it is to stay motivated to learn the language. At TalkToMeInKorean.com, we provide a systematic curriculum of easy-to-follow lessons, and a wide selection of self-study Korean-learning books!
…
continue reading
1
Real English Conversations Podcast – Real English for Global Professionals | Speak Clearly & Confidently at Work
Real English Conversations: With Curtis Davies - English Podcast
1k
50
🚀 Real English Conversations – Real English for Global Professionals Are you an international professional working in English? Do you need to speak confidently and naturally in high-stakes business situations? You've just found your competitive advantage. 🎧 Welcome to the Real English Conversations Podcast — the go-to resource for intermediate to advanced English learners who want to communicate like a professional, not like a textbook. Hosted by Curtis Davies, Confidence Trainer, Pronunciat ...
…
continue reading
Culips English Podcast: Practical English Learning Made Fun Learn and Explore: Join Culips for an exciting English learning journey. Our podcast focuses on teaching English idioms, slang, and phrasal verbs through fun and engaging conversations. Each episode helps you master English for real-life situations. Unique Learning Experience: Culips stands out by blending language skills with cultural insights. Our diverse hosts make learning relatable, covering a variety of everyday topics. You’ll ...
…
continue reading
Are you looking for more happiness, success and vitality in your life? Get inspired each week with wellness and performance expert, Integrative Medicine Fellow, author & keynote speaker, Kristel Bauer. Live Greatly shares empowering conversations and insights about happiness, wellness & success to support your personal and professional development. Kristel talks with top experts, leaders and inspiring individuals to help you embrace a growth mindset and excel in your work/life. Kristel then ...
…
continue reading
The Washington Post's Presidential podcast explores how each former American president reached office, made decisions, handled crises and redefined the role of commander-in-chief. It was released leading up to up to Election Day 2016, starting with George Washington in week one and ending on week 44 with the president-elect. New special episodes in the countdown to the 2020 presidential election highlight other stories from U.S. presidential history that can help illuminate our current momen ...
…
continue reading
Best friends Joel and Matt are the co-hosts of How to Money which is all about providing the knowledge & tools that normal folks need to thrive in areas like debt payoff, DIY investing, and crucial money tricks that will provide continuous help along your journey. We believe that access to unbiased and jargon-free personal finance guidance is more necessary than ever before. When you handle your money in a purposeful, thoughtful way that works for your lifestyle, you can really start living ...
…
continue reading
Learn German in coffee-break lessons from the Radio Lingua Network. In each lesson we'll focus on the language you need to know and before long you'll be making yourself understood with native German speakers. 386357 Hosted on Acast. See acast.com/privacy for more information.
…
continue reading
Player FM - برنامه پادکست
با برنامه Player FM !
با برنامه Player FM !
))
CCT 296: Compliance and Contractual Requirements (Domain 1.4)
Manage episode 518727519 series 3464644
محتوای ارائه شده توسط Shon Gerber, vCISO, CISSP, Cybersecurity Consultant and Entrepreneur, Shon Gerber, VCISO, CISSP, and Cybersecurity Consultant. تمام محتوای پادکست شامل قسمتها، گرافیکها و توضیحات پادکست مستقیماً توسط Shon Gerber, vCISO, CISSP, Cybersecurity Consultant and Entrepreneur, Shon Gerber, VCISO, CISSP, and Cybersecurity Consultant یا شریک پلتفرم پادکست آنها آپلود و ارائه میشوند. اگر فکر میکنید شخصی بدون اجازه شما از اثر دارای حق نسخهبرداری شما استفاده میکند، میتوانید روندی که در اینجا شرح داده شده است را دنبال کنید.https://fa.player.fm/legal
Check us out at: https://www.cisspcybertraining.com/
Get access to 360 FREE CISSP Questions: https://www.cisspcybertraining.com/offers/dzHKVcDB/checkout
Get access to my FREE CISSP Self-Study Essentials Videos: https://www.cisspcybertraining.com/offers/KzBKKouv
A tiny payload hidden in a legitimate-looking NuGet package can sit inside an industrial network for years, then trigger cascading failures in minutes. That chilling scenario sets the stage for a hands-on tour of CISSP Domain 1.4, where we show how to turn high-level rules into clear, defensible security controls that protect real systems and pass tough audits. We connect the dots between contracts that demand fast breach notifications, laws with sector-specific obligations, and frameworks that teach you how to structure your program.
We break down the essentials: identify the data in scope, pick a backbone framework (ISO 27001 or NIST CSF), and map each requirement to specific controls and evidence. You’ll hear practical mappings for HIPAA, GLBA, COPPA, FERPA, NYDFS, DORA, SOX, FISMA, and PCI DSS, plus how to handle extraterritorial reach under GDPR and data localization that shapes your cloud strategy. We also highlight why contractual terms often outrun statutes and how to build a requirements register so operations knows exactly what to log, how fast to notify, and which controls must exist.
Then we get tactical. Learn how to create a regulatory register, assemble audit-ready proof (policies, procedures, configs, logs, training, attestations), and run incident tabletop exercises that include vendors and clarify when the notification clock starts. For industrial environments with rare patch windows, we offer pragmatic steps: maintain a software bill of materials, verify package sources, enforce code signing where possible, document every change, and compensate with monitoring and segmentation when upgrades are risky. By the end, you’ll have a blueprint to translate compliance into resilience—fast enough for 72-hour breach clocks, strong enough to handle delayed threats, and simple enough to sustain.
Subscribe for more CISSP-ready training, share this episode with your security team, and leave a review to help others find the show. What framework are you mapping to today?
Gain exclusive access to 360 FREE CISSP Practice Questions at FreeCISSPQuestions.com and have them delivered directly to your inbox! Don’t miss this valuable opportunity to strengthen your CISSP exam preparation and boost your chances of certification success.
Join now and start your journey toward CISSP mastery today!
فصل ها
1. Welcome And Episode Setup (00:00:00)
2. News: Industrial Time Bomb Malware (00:00:54)
3. Why Industrial Environments Are Vulnerable (00:05:01)
4. Detection Gaps And IR Prep (00:08:59)
5. Program Plug And Study Resources (00:12:41)
6. Domain 1.4 Overview: Compliance Basics (00:15:14)
7. Contracts, Laws, And Regulations (00:18:45)
8. Privacy, Jurisdiction, And Evidence (00:22:20)
9. Contract Artifacts And Obligations (00:26:28)
10. Due Care, Due Diligence, And Proof (00:31:10)
11. Key Sector Laws: HIPAA, GLBA, COPPA, FERPA (00:35:56)
303 قسمت
اشتراک گذاری
Manage episode 518727519 series 3464644
محتوای ارائه شده توسط Shon Gerber, vCISO, CISSP, Cybersecurity Consultant and Entrepreneur, Shon Gerber, VCISO, CISSP, and Cybersecurity Consultant. تمام محتوای پادکست شامل قسمتها، گرافیکها و توضیحات پادکست مستقیماً توسط Shon Gerber, vCISO, CISSP, Cybersecurity Consultant and Entrepreneur, Shon Gerber, VCISO, CISSP, and Cybersecurity Consultant یا شریک پلتفرم پادکست آنها آپلود و ارائه میشوند. اگر فکر میکنید شخصی بدون اجازه شما از اثر دارای حق نسخهبرداری شما استفاده میکند، میتوانید روندی که در اینجا شرح داده شده است را دنبال کنید.https://fa.player.fm/legal
Check us out at: https://www.cisspcybertraining.com/
Get access to 360 FREE CISSP Questions: https://www.cisspcybertraining.com/offers/dzHKVcDB/checkout
Get access to my FREE CISSP Self-Study Essentials Videos: https://www.cisspcybertraining.com/offers/KzBKKouv
A tiny payload hidden in a legitimate-looking NuGet package can sit inside an industrial network for years, then trigger cascading failures in minutes. That chilling scenario sets the stage for a hands-on tour of CISSP Domain 1.4, where we show how to turn high-level rules into clear, defensible security controls that protect real systems and pass tough audits. We connect the dots between contracts that demand fast breach notifications, laws with sector-specific obligations, and frameworks that teach you how to structure your program.
We break down the essentials: identify the data in scope, pick a backbone framework (ISO 27001 or NIST CSF), and map each requirement to specific controls and evidence. You’ll hear practical mappings for HIPAA, GLBA, COPPA, FERPA, NYDFS, DORA, SOX, FISMA, and PCI DSS, plus how to handle extraterritorial reach under GDPR and data localization that shapes your cloud strategy. We also highlight why contractual terms often outrun statutes and how to build a requirements register so operations knows exactly what to log, how fast to notify, and which controls must exist.
Then we get tactical. Learn how to create a regulatory register, assemble audit-ready proof (policies, procedures, configs, logs, training, attestations), and run incident tabletop exercises that include vendors and clarify when the notification clock starts. For industrial environments with rare patch windows, we offer pragmatic steps: maintain a software bill of materials, verify package sources, enforce code signing where possible, document every change, and compensate with monitoring and segmentation when upgrades are risky. By the end, you’ll have a blueprint to translate compliance into resilience—fast enough for 72-hour breach clocks, strong enough to handle delayed threats, and simple enough to sustain.
Subscribe for more CISSP-ready training, share this episode with your security team, and leave a review to help others find the show. What framework are you mapping to today?
Gain exclusive access to 360 FREE CISSP Practice Questions at FreeCISSPQuestions.com and have them delivered directly to your inbox! Don’t miss this valuable opportunity to strengthen your CISSP exam preparation and boost your chances of certification success.
Join now and start your journey toward CISSP mastery today!
فصل ها
1. Welcome And Episode Setup (00:00:00)
2. News: Industrial Time Bomb Malware (00:00:54)
3. Why Industrial Environments Are Vulnerable (00:05:01)
4. Detection Gaps And IR Prep (00:08:59)
5. Program Plug And Study Resources (00:12:41)
6. Domain 1.4 Overview: Compliance Basics (00:15:14)
7. Contracts, Laws, And Regulations (00:18:45)
8. Privacy, Jurisdiction, And Evidence (00:22:20)
9. Contract Artifacts And Obligations (00:26:28)
10. Due Care, Due Diligence, And Proof (00:31:10)
11. Key Sector Laws: HIPAA, GLBA, COPPA, FERPA (00:35:56)
303 قسمت
Усі епізоди
×
به Player FM خوش آمدید!
Player FM در سراسر وب را برای یافتن پادکست های با کیفیت اسکن می کند تا همین الان لذت ببرید. این بهترین برنامه ی پادکست است که در اندروید، آیفون و وب کار می کند. ثبت نام کنید تا اشتراک های شما در بین دستگاه های مختلف همگام سازی شود.
مشابه CISSP Cyber Training Podcast - CISSP Training Program
An award-winning cannabis podcast for women, by women. Hear joyful stories and useful advice about cannabis for health, well-being, and fun—especially for needs specific to women like stress, sleep, and sex. We cover everything from: What’s the best weed for sex? Can I use CBD for menstrual cramps? What are the effects of the Harlequin strain or Gelato strain? And, why do we prefer to call it “cannabis” instead of “marijuana”? We also hear from you: your first time buying legal weed, and how ...
…
continue reading
Everyone has a dream. But sometimes there’s a gap between where we are and where we want to be. True, there are some people who can bridge that gap easily, on their own, but all of us need a little help at some point. A little boost. An accountability partner. A Snooze Squad. In each episode, the Snooze Squad will strategize an action plan for people to face their fears. Guests will transform their own perception of their potential and walk away a few inches closer to who they want to become ...
…
continue reading
The London School of Economics and Political Science public events podcast series is a platform for thought, ideas and lively debate where you can hear from some of the world's leading thinkers. Listen to more than 200 new episodes every year.
…
continue reading
The key to learning Korean is how easy it is to stay motivated to learn the language. At TalkToMeInKorean.com, we provide a systematic curriculum of easy-to-follow lessons, and a wide selection of self-study Korean-learning books!
…
continue reading
1
Real English Conversations Podcast – Real English for Global Professionals | Speak Clearly & Confidently at Work
Real English Conversations: With Curtis Davies - English Podcast
1k50
🚀 Real English Conversations – Real English for Global Professionals Are you an international professional working in English? Do you need to speak confidently and naturally in high-stakes business situations? You've just found your competitive advantage. 🎧 Welcome to the Real English Conversations Podcast — the go-to resource for intermediate to advanced English learners who want to communicate like a professional, not like a textbook. Hosted by Curtis Davies, Confidence Trainer, Pronunciat ...
…
continue reading
Culips English Podcast: Practical English Learning Made Fun Learn and Explore: Join Culips for an exciting English learning journey. Our podcast focuses on teaching English idioms, slang, and phrasal verbs through fun and engaging conversations. Each episode helps you master English for real-life situations. Unique Learning Experience: Culips stands out by blending language skills with cultural insights. Our diverse hosts make learning relatable, covering a variety of everyday topics. You’ll ...
…
continue reading
Are you looking for more happiness, success and vitality in your life? Get inspired each week with wellness and performance expert, Integrative Medicine Fellow, author & keynote speaker, Kristel Bauer. Live Greatly shares empowering conversations and insights about happiness, wellness & success to support your personal and professional development. Kristel talks with top experts, leaders and inspiring individuals to help you embrace a growth mindset and excel in your work/life. Kristel then ...
…
continue reading
The Washington Post's Presidential podcast explores how each former American president reached office, made decisions, handled crises and redefined the role of commander-in-chief. It was released leading up to up to Election Day 2016, starting with George Washington in week one and ending on week 44 with the president-elect. New special episodes in the countdown to the 2020 presidential election highlight other stories from U.S. presidential history that can help illuminate our current momen ...
…
continue reading
Best friends Joel and Matt are the co-hosts of How to Money which is all about providing the knowledge & tools that normal folks need to thrive in areas like debt payoff, DIY investing, and crucial money tricks that will provide continuous help along your journey. We believe that access to unbiased and jargon-free personal finance guidance is more necessary than ever before. When you handle your money in a purposeful, thoughtful way that works for your lifestyle, you can really start living ...
…
continue reading
Learn German in coffee-break lessons from the Radio Lingua Network. In each lesson we'll focus on the language you need to know and before long you'll be making yourself understood with native German speakers. 386357 Hosted on Acast. See acast.com/privacy for more information.
…
continue reading
Player FM - برنامه پادکست
با برنامه Player FM !
با برنامه Player FM !
