ISACARuSec – Telegram
ISACARuSec
@IsacaRuSec
2.27K subscribers
1.77K photos
13 videos
303 files
5.63K links
Канал направления ИБ Московского отделения ISACA

Направление канала новости ISACA, новости в области управления ИБ в России и мире, обмен лучшими практиками.

https://engage.isaca.org/moscow/home

Связь с администрацией
@popepiusXIII
Download Telegram
About
Blog
Apps
Platform
Join
ISACARuSec
2.27K subscribers
ISACARuSec
https://www.enisa.europa.eu/news/enisa-news/enisa-unveils-its-new-strategy-on-cybersecurity-for-a-trusted-and-cyber-secure-europe
ENISA
ENISA unveils its New Strategy towards a Trusted and Cyber Secure Europe
This publication by the European Union Agency for Cybersecurity outlines the Agency’s strategic objectives to boost cybersecurity, preparedness and trust across the EU under its new strengthened and permanent mandate.
326 views
ISACARuSec
https://twitter.com/alukatsky/status/1285563121525039104?s=09
Twitter
Alexey Lukatsky
Новое информационное письмо ДИБ про обязательность СТО БР ИББС (не ГОСТ 57580) - https://t.co/andUFHKT3r Если кратко - то необязательно, но можно использовать как методический документ
350 views
ISACARuSec
https://twitter.com/BeAFirebrand/status/1285527737877385216?s=09
Twitter
Firebrand Training
On the 24th July we’re launching our new platform, Firebrand Sprint, with a FREE webinar introducing ISACA’s CDPSE certification. Hosted by #ISACA & Firebrand experts, you’ll get a first-hand glimpse into the future of cyber privacy. Book now: https://t.co/3fUZ1m89mF
312 views
ISACARuSec
Interesting statistics about vulnerabilities in the global landscape.

https://www.rapid7.com/research/report/nicer-2020/
Rapid7
National / Industry / Cloud Exposure Report (NICER) 2020 - Rapid7
417 viewsedited  
ISACARuSec
https://twitter.com/ISACANews/status/1285850573145870341?s=09
Twitter
ISACA Global
New webinars are now available for registration, focusing on Cloud IAM, cyber asset management, and security for #workfromhome setups. Members receive free CPEs for attending; view upcoming options: https://t.co/kC6InidKJD
324 views
ISACARuSec
NIST’s Post-Quantum Cryptography Program Enters ‘Selection Round’ | NIST
https://www.nist.gov/news-events/news/2020/07/nists-post-quantum-cryptography-program-enters-selection-round
NIST
NIST’s Post-Quantum Cryptography Program Enters ‘Selection Round’
The race to protect sensitive electronic information against the threat of quantum computers has entered the home stretch.
582 views
ISACARuSec
ISO - Protecting privacy and consent online
https://www.iso.org/news/ref2525.html
ISO
Protecting privacy and consent online
For everyone concerned about online privacy, ISO/IEC 29184 has just been published.
328 views
ISACARuSec
https://twitter.com/enisa_eu/status/1286206631685087232?s=09
Twitter
ENISA
📢#ENISA publishes today its 9th annual report on telecom security incidents. Key takeaways: ☑️1 billion user hours lost ☑️153 incidents reported ☑️26% of the incidents were caused by human errors ☑️System failures dominated in terms of impact More info: …
317 views
ISACARuSec
https://ec.europa.eu/digital-single-market/en/news/report-member-states-progress-implementing-eu-toolbox-5g-cybersecurity
Shaping Europe’s digital future - European Commission
Report on Member States’ progress in implementing the EU Toolbox on 5G Cybersecurity - Shaping Europe’s digital future - European…
This document constitutes the report on the implementation of the Toolbox referred to in the Commission Communication "Secure 5G deployment in the EU - Implementing the EU toolbox". Its main objective is to provide an overview of the state of play of the…
338 views
ISACARuSec
Требуется специалист с практическим опытом работы по Cobit.
347 viewsedited  
ISACARuSec
Forwarded from Ksenia Apleeva
Всем привет!

Мы расширяем команду безопасности Яндекса и ищем ведущего менеджера по управлению международными ИБ-сертификациями (ISO 27001, PCI DSS, SOC 2/3, SOX и пр.). Нам нужен проактивный менеджер высокого уровня, который сможет не только успешно поддерживать уже полученные сертификации в области ИБ для сервисов Яндекса, но и развивать это направление. Мы верим в то, что ИБ-сертификации помогают бизнесу развиваться, а процессам ИБ становиться более зрелыми. Если вы тоже в этом убеждены, присоединяйтесь к нам.
Описание вакансии: https://yandex.ru/jobs/vacancies/security/infsec_man/
Локация - Москва.

По всем вопросам можно приходить ко мне в личные сообщения :)
Работа в Яндексе
Вакансия «Ведущий специалист по ИБ-сертификации» в Яндексе — работа в компании Яндекс для IT-специалистов
Работа в компании Яндекс для специалиста «Ведущий специалист по ИБ-сертификации» с уровнем квалификации от «Специалист» до «Старший» — Высокая заработная плата и социальные гарантии в IT-компании России
502 views
ISACARuSec
Differential Privacy for Privacy-Preserving Data Analysis: An Introduction to our Blog Series | NIST
https://www.nist.gov/blogs/cybersecurity-insights/differential-privacy-privacy-preserving-data-analysis-introduction-our
NIST
Differential Privacy for Privacy-Preserving Data Analysis: An Introduction to our Blog Series
Does your organization want to aggregate and analyze data to learn trends, but in a way that protects privacy?
373 views
ISACARuSec
https://www.kuppingercole.com/events/n40539
KuppingerCole
Designing and Establishing a Mature PAM Ecosystem for Reducing Risk in Your Organisation
What makes a PAM strategy different from enterprise password management or Identity Access Management? What are the first actions you should take to protect your privileged accounts in the shortest amount of time? And, how has the definition of “PAM Basics”…
345 viewsedited  
ISACARuSec
https://plus.kuppingercole.com/article/mc80508/market-compass-endpoint-protection-detection-and-response/
KuppingerCole
Endpoint Protection, Detection, and Response
The KuppingerCole Market Compass provides an overview of the products offerings in Endpoint Protection, Detection and Response. The Endpoint Security space continues to see much innovation and some consolidation. The formerly separate products Endpoint Protection…
322 viewsedited  
ISACARuSec
Survey of Supply Chain Attacks

The Atlantic Council has a released a report that looks at the history of computer supply chain attacks.

https://www.schneier.com/blog/archives/2020/07/survey_of_suppl.html
282 viewsedited  
ISACARuSec
https://medium.com/anton-on-security/modern-siem-mysteries-80fcd699da68
Medium
Modern SIEM Mysteries
Look outside, we are in 2020 (can anybody really forget that?). So, we are not in 2002 anymore (perhaps the birth year of modern-ish SIEM)…
280 views
ISACARuSec
https://twitter.com/ISACANews/status/1286866014433505280?s=09
Twitter
ISACA Global
Coming 28 July: learn how strong cloud IAM governance prevents breaches and limits the blast radius of security incidents. Register for this free webinar: https://t.co/kGR20aziaI
299 views
ISACARuSec
https://krebsonsecurity.com/2020/07/thinking-of-a-cybersecurity-career-read-this/
Krebs on Security
Thinking of a Cybersecurity Career? Read This
Thousand of people graduate from colleges and universities each year with cybersecurity or computer science degrees only to find employers are less than thrilled about their hands-on, foundational skills. Here's a look at a recent survey that identified some…
312 views
ISACARuSec
https://www.cisecurity.org/blog/cis-password-policy-guide-passphrases-monitoring-and-more/
CIS
CIS Password Policy Guide: Passphrases, Monitoring, and More
The CIS Password Policy Guide consolidates password guidance into a single source and provides best practices and recommendations.
2.25K views
ISACARuSec
Understanding and Leveraging the MITRE ATT&CK Framework: A SANS Roundtable - SANS Institute
https://www.sans.org/webcasts/understanding-leveraging-mitre-att-ck-framework-roundtable-115345
www.sans.org
Understanding and Leveraging the MITRE ATT&CK Framework: A SANS Roundtable - SANS Institute
In this webcast, sponsor representatives and report author John Hubbard will discuss the new SANS report, "Measuring and Improving Cyber Defense Using the MITRE ATT&CK Framework." The discussion will explore themes from the paper, including:What the MITRE…
318 viewsedited  
ISACARuSec
How to Show Business Benefit by Moving to Risk-Based Vulnerability Management - SANS Institute
https://www.sans.org/webcasts/show-business-benefit-moving-risk-based-vulnerability-management-115970
www.sans.org
How to Show Business Benefit by Moving to Risk-Based Vulnerability Management - SANS Institute
Vulnerabilities are relentless and exploited by targeted attacks faster than ever with damaging results to business. Study after study shows that most successful attacks exploit well known vulnerabilities with existing patches. Most businesses already do…
326 viewsedited