Playbooks are familiar territory for sports teams and agencies alike. As basketball teams have trotted out motion – instead of isolation – offenses, agencies have taken a page of the same principle: that all parts of IT should be moving in unison.
Part 2 will focus on how we build skills to fill organizational gaps, get ahead of bad actors and develop our team members.
Zero trust protects agencies by making access control decisions on a fine-grained and informed basis.
Government is in competition for information security professionals. How do we attract and hire qualified infosec staff, as well as develop key skills?
We focus on some additional benefits of formal information security risk management and talk about risk tolerance and risk thresholds.
Next time you catch yourself wanting another security tool, stop and ask: “How can I make my existing tools better?”
As agencies bring more agility to services development and delivery, they risk increasing vulnerability if they don’t also take a more agile approach to security.
Remote workers for one defense health agency were having problems accessing what they needed to do their jobs so the agency invested in a SASE solution.
Here are some best practices for equating how information security can reduce risk to a level that is acceptable to your agency.
Culture is the number one success factor in adopting DevSecOps. An expert identified four key attributes of a good DevSecOps culture.