ISACARuSec – Telegram
ISACARuSec
@IsacaRuSec
2.27K subscribers
1.77K photos
13 videos
303 files
5.64K links
Канал направления ИБ Московского отделения ISACA

Направление канала новости ISACA, новости в области управления ИБ в России и мире, обмен лучшими практиками.

https://engage.isaca.org/moscow/home

Связь с администрацией
@popepiusXIII
Download Telegram
About
Blog
Apps
Platform
Join
ISACARuSec
2.27K subscribers
ISACARuSec
Forwarded from Пост Лукацкого
Презентация с Retail TECH
190 views
ISACARuSec
Forwarded from Пост Лукацкого
Выступал на Retail TECH с коротенькой презентацией, которую выложил в канал - https://t.co/O7OYBt6Gk6 pic.twitter.com/Sqij5pfskX
— Alexey Lukatsky (@alukatsky) April 22, 2021
Telegram
Пост Лукацкого
194 views
ISACARuSec
https://info.fishtech.group/cyderes-chronicle-modernizing-siem-01
info.fishtech.group
LIVE WEBCAST: Modernization of a SIEM
295 views
ISACARuSec
SP 800-82 Rev. 3 (Draft), Guide to Industrial Control Systems (ICS) Security | CSRC
https://csrc.nist.gov/publications/detail/sp/800-82/rev-3/draft
CSRC | NIST
NIST Special Publication (SP) 800-82 Rev. 3 (Withdrawn), Guide to Operational Technology (OT) Security
This document provides guidance on how to secure operational technology (OT), while addressing their unique performance, reliability, and safety requirements. OT encompasses a broad range of programmable systems and devices that interact with the physical…
310 views
ISACARuSec
Открытая IDS, ранее известная как bro

https://zeek.org/2021/04/22/zeek-in-enterprise-day/
Zeek
Zeek: Zeek in Enterprise Day
Announcing Zeek in Enterprise Day - Does your organization incorporate Zeek into its commercial offerings? Do you want to let the Zeek Community know about your product? The Zeek in Enterprise Day is just for you!! Sign up and participate today.
439 views
ISACARuSec
https://www.isaca.org/education/online-events/lms_w042721
307 views
ISACARuSec
https://www.zdnet.com/article/easy-to-guess-default-device-passwords-are-a-step-closer-to-being-banned/
ZDNET
Easy-to-guess default device passwords are a step closer to being banned
New plans designed to protect IoT devices from cyberattacks will ban default passwords and require manufacturers to tell users how long smart devices - including phones - will receive security updates for.
340 views
ISACARuSec
https://twitter.com/burning_pm/status/1385597970100404228
Twitter
Paul
Books that everyone should have, regardless if you're in infosec: - Practical Malware Analysis - Windows Internals (7th Edition) - Incident Response and Digital Forensics - Gray Hat Hacking - NMAP Network Scanning - Blue Team Handbook Anything else?
343 viewsedited  
ISACARuSec
https://twitter.com/ISACANews/status/1386439910492540930
Twitter
ISACA Global
Ready to take your career to the next level but not sure which ISACA certification fits you best? See our detailed comparison here to pick your best option: bit.ly/2QuIN69 #ISACA #audit #cybersecurity #risk #privacy #governance
313 viewsedited  
ISACARuSec
The Defending Against Software Supply Chain Attacks, released by CISA and the National Institute of Standards and Technology (NIST), provides an overview of software supply chain risks and recommendations on how software customers and vendors can use the NIST Cyber Supply Chain Risk Management (C-SCRM) Framework and the Secure Software Development Framework (SSDF) to identify, assess, and mitigate software supply chain risks.

https://www.cisa.gov/publication/software-supply-chain-attacks
www.cisa.gov
Software Supply Chain Attacks | CISA
The Defending Against Software Supply Chain Attacks, released by CISA and the National Institute of Standards and Technology (NIST), provides an overview of software supply chain risks and recommendations on how software customers and vendors can use the…
312 viewsedited  
ISACARuSec
307 views
ISACARuSec
https://www.nist.gov/news-events/news/2021/04/nist-releases-measurement-tool-emerging-bgp-security-technologies
NIST
NIST Releases Measurement Tool for Emerging BGP Security Technologies
NIST has released a new version of its measurement tools aimed at improving trust and confidence in emerging technologies for improving the security and resi
649 views
ISACARuSec
SP 800-172A (Draft), Assessing Enhanced Security Requirements for CUI | CSRC
https://csrc.nist.gov/publications/detail/sp/800-172A/draft
CSRC | NIST
NIST Special Publication (SP) 800-172A (Draft), Assessing Enhanced Security Requirements for Controlled Unclassified Information
The protection of Controlled Unclassified Information (CUI) in nonfederal systems and organizations is important to federal agencies and can directly impact the ability of the Federal Government to successfully carry out its assigned missions and business…
276 views
ISACARuSec
https://sborisov.blogspot.com/2021/04/pci.html
Blogspot
Лучшие практики по жизненному циклу безопасности ПО от PCI
Обзор нового стандарта по разработке безопасного программного обеспечения PCI Secure SLC Standard
311 views
ISACARuSec
https://csrc.nist.gov/publications/detail/white-paper/2021/04/28/getting-ready-for-post-quantum-cryptography/final#pubs-abstract-header
CSRC | NIST
Getting Ready for Post-Quantum Cryptography: Exploring Challenges Associated with Adopting and Using Post-Quantum Cryptographic…
Cryptographic technologies are used throughout government and industry to authenticate the source and protect the confidentiality and integrity of information that we communicate and store. The paper describes the impact of quantum computing technology on…
266 views
ISACARuSec
https://thepaypers.com/reports/financial-crime-and-fraud-report-2021/r1248631
Thepaypers
Financial Crime and Fraud Report 2021
<p style='text-align: justify;'><i>Financial Crime and Fraud Report 2021 follows the development of the best practices and tools used by financial institutions to prevent fraud from happening, to boost the digital onboarding process for their customers while…
261 views
ISACARuSec
XDR Defined: Giving Meaning To Extended Detection And Response

https://go.forrester.com/blogs/xdr-defined-giving-meaning-to-extended-detection-and-response/
248 viewsedited  
ISACARuSec
https://cloud.google.com/blog/products/identity-security/google-cloud-security-foundations-guide
Google Cloud Blog
Get the guide: Google Cloud security foundations | Google Cloud Blog
Get step by step guidance for creating a secured environment with Google Cloud with the security foundations guide and Terraform blueprint noscripts.
262 views
ISACARuSec
Очередной пост по обнаружению в блоге Антона Чувакина, известного эксперта по soc и siem, в прошлом аналитика Gartner.

https://medium.com/anton-on-security/what-are-your-not-detecting-5056e20b441c
Medium
What Are You NOT Detecting?
What are you not detecting?
285 viewsedited  
ISACARuSec
https://twitter.com/ISACANews/status/1387466711889334274
Twitter
ISACA Global
To succeed in the CISM exam, reprogram your mind for success and think like a manager, writes George McPherson. Read more of George's CISM prep tips here: bit.ly/3dZ9N6I #cism #isaca #security #informationsecurity
297 viewsedited  
ISACARuSec
https://csrc.nist.gov/publications/detail/sp/800-66/rev-2/draft
CSRC | NIST
NIST Special Publication (SP) 800-66 Rev. 2 (Draft), Implementing the Health Insurance Portability and Accountability Act (HIPAA)…
The HIPAA Security Rule focuses on safeguarding electronic protected health information (ePHI) held or maintained by regulated entities. The ePHI that a regulated entity creates, receives, maintains, or transmits must be protected against reasonably anticipated…
300 views