ISACARuSec – Telegram
ISACARuSec
@IsacaRuSec
2.26K subscribers
1.78K photos
13 videos
308 files
5.67K links
Канал направления ИБ Московского отделения ISACA

Направление канала новости ISACA, новости в области управления ИБ в России и мире, обмен лучшими практиками.



Связь с администрацией
@popepiusXIII
Download Telegram
About
Blog
Apps
Platform
Join
ISACARuSec
2.26K subscribers
ISACARuSec
Forwarded from Листок бюрократической защиты информации
​​Проекты ГОСТов от ФСТЭК России

ФСТЭК России представила для общественного обозрения проекты национальных стандартов ГОСТ Р:

🔹 Управление инцидентами, связанными с безопасностью информации. Принципы менеджмента инцидентов.

🔹 Управление инцидентами, связанными с безопасностью информации. Руководство по планированию и подготовке к реагированию на инциденты.

🔹 Управление инцидентами, связанными с безопасностью информации. Руководство по реагированию на инциденты в сфере информационных и компьютерных технологий.
163 views
ISACARuSec
https://csrc.nist.gov/publications/detail/sp/800-47/rev-1/final
CSRC | NIST
NIST Special Publication (SP) 800-47 Rev. 1, Managing the Security of Information Exchanges
An organization often has mission and business-based needs to exchange (share) information with one or more other internal or external organizations via various information exchange channels; however, it is recognized that the information being exchanged…
516 views
ISACARuSec
https://www.f-secure.com/en/consulting/events/securing-the-supply-chain
F-Secure
Securing Your Supply Chain | F-Secure
Join us for recommendations for securing the supply chain by addressing the inevitable risks with more effective approaches.
521 views
ISACARuSec
Если стали жертвами шифровальщиков и решили платить выкуп, можно пробовать просить скидку :)

https://twitter.com/mikko/status/1417463190120714242
Twitter
@mikko
Our previous research showed the same thing: you could almost always negotiate the size of the ransom payment, with any gang. Obviously we always recommend not to pay any ransom. f-secure.bg/wp-content/upl…
538 viewsedited  
ISACARuSec
https://cloud.google.com/blog/products/identity-security/security-summit-2021-google-expands-trusted-cloud
Google Cloud Blog
Security Summit 2021: Google expands Trusted Cloud | Google Cloud Blog
A vision for invisible security that helps stay ahead of evolving threats.
547 views
ISACARuSec
Через 47 дней стартует бесплатный открытый курс по безопасному программированию от ИТМО.

"Курс охватывает круг вопросов по безопасной разработке программного обеспечения (ПО), способы снижения рисков информационной безопасности, методологии разработки безопасного ПО, тестирование кода."

https://openedu.ru/course/ITMOUniversity/INFSEC/
1.03K viewsedited  
ISACARuSec
Статус репорт по выбору стандарта легковесной криптографии в США.

https://csrc.nist.gov/publications/detail/nistir/8369/final
CSRC | NIST
NIST Internal or Interagency Report (NISTIR) 8369, Status Report on the Second Round of the NIST Lightweight Cryptography Standardization…
The National Institute of Standards and Technology (NIST) initiated a public standardization process to select one or more Authenticated Encryption with Associated Data (AEAD) and hashing schemes suitable for constrained environments. In February 2019, 57…
808 views
ISACARuSec
https://www.nccoe.nist.gov/publication/1800-24/

Securing Picture Archiving and Communication System (PACS):

Cybersecurity for the Healthcare Sector
537 viewsedited  
ISACARuSec
https://medium.com/anton-on-security/new-paper-autonomic-security-operations-10x-transformation-of-the-security-operations-center-daf779fc4a30
Medium
New Paper: “Autonomic Security Operations — 10X Transformation of the Security Operations Center”
It is with much excitement that we announce a new paper about transforming your security operations; it is published under the Office of…
521 views
ISACARuSec
https://therecord.media/serioussam-bug-impacts-all-windows-10-versions-released-in-the-past-2-5-years/
therecord.media
SeriousSAM bug impacts all Windows 10 versions released in the past 2.5 years
A security researcher has discovered a major vulnerability in the Windows 10 operating system that can allow threat actors to gain access to elevated privileges and user accounts passwords.
511 views
ISACARuSec
https://twitter.com/campuscodi/status/1418049913946918918
Twitter
Catalin Cimpanu
Mitre shares a list of today's most common and most dangerous security flaws it has been tracking this year cwe.mitre.org/top25/archive/…
508 viewsedited  
ISACARuSec
https://twitter.com/FSecure/status/1418140597945262089
Twitter
F-Secure
F-Secure’s board has been refining how to make better decisions about our security posture and risk appetite. For @helpnetsecurity, our CISO @ekoivune revealed 5 questions any organization can use to help with this process>> helpnetsecurity.com/2021/07/22/que……
502 viewsedited  
ISACARuSec
https://docs.microsoft.com/en-us/azure/active-directory/fundamentals/security-operations-privileged-accounts
Docs
Security operations for privileged accounts in Azure Active Directory - Microsoft Entra
Learn about baselines, and how to monitor and alert on potential security issues with privileged accounts in Azure Active Directory.
513 views
ISACARuSec
Стандартинформ реорганизован в РСТ.
https://twitter.com/CryptographyRU/status/1418128813184147461
Twitter
Russian cryptography
Создан Российский институт стандартизации rst.gov.ru/portal/gost/ho…
529 viewsedited  
ISACARuSec
https://www.kuppingercole.com/events/eic2021
KuppingerCole
European Identity and Cloud Conference 2021
The European Identity and Cloud Conference returns fully digitalized, reacting to the global pandemic. We have collected a lot of experience in virtual conferencing throughout 2020 to be able to...
548 views
ISACARuSec
https://www.nist.gov/blogs/cybersecurity-insights/automatic-proofs-differential-privacy
NIST
Automatic Proofs of Differential Privacy
We are excited to introduce our fourth guest author in this blog series, Chike Abuah, PhD student in compute
565 views
ISACARuSec
FAQ on XDR by Forrester

https://go.forrester.com/blogs/xdr-faq-frequently-asked-questions-on-extended-detection-and-response/
573 viewsedited  
ISACARuSec
590 views
ISACARuSec
https://twitter.com/ArchieScorp/status/1418508731575382019
Twitter
Alexander Redchits
MITRE обновила ТОП-25 самых опасных программных CWE cwe.mitre.org/top25/archive/…
580 viewsedited  
ISACARuSec
https://csrc.nist.gov/publications/detail/nistir/8319/final
CSRC | NIST
NIST Internal or Interagency Report (NISTIR) 8319, Review of the Advanced Encryption Standard
The field of cryptography continues to advance at a very rapid pace, leading to new insights that may impact the security properties of cryptographic algorithms. The Crypto Publication Review Board ('the Board') has been established to identify publications…
623 views