One Article Review
| Source |  NoticeBored |
|---|---|
| Identifiant | 1570353 |
| Date de publication | 2020-02-24 12:37:21 (vue: 2020-02-29 05:00:23) |
| Titre | NBlog Feb 24 - InfoSec 101 for pro\'s |
| Texte | Today I'm working on the InfoSec 101 awareness seminar for professionals, by which I mean workers with a professional interest in information security. As with the staff and management seminars, the aim is to cover the basics in a way that appeals to the audience: I figure the professionals are more clued-up than most, particularly on technology, so it's appropriate to go into a little more depth here on the fundamental concepts ... starting with risk and control.  The diagram above represents the nature of risk i.e. 'uncertain outcome'. That's a seminar slide's worth, with a few words from the presenter briefly explaining each of the red-amber-green spectra as they appear on the screen.The next slide contrasts two complementary forms of control: either we stop harmful things from occurring by avoiding, preventing or mitigating incidents, or we ensure that good things occur - and that's an intriguing thought. What does that actually mean in this context?  'Prevent bad stuff' is what most people think security is all about ... but wait, there's more. 'Protect good stuff' refers to maintaining the confidentiality, integrity and availability of information, thereby supporting and enabling business activities which use and depend on information.Looking again at those two images, the simpler, cleaner style of the 'control' one seems more elegant and better suited to InfoSec 101, so I will redraw the 'risk' one in the same style. We could stop right there with a 2-slide InfoSec 101 pro seminar but, |
| Envoyé | Oui |
| Condensat | we as from the 101 about above activities actually again aim all amber appeals appear appropriate are area arguably aspects audience audience: availability avoiding awareness background bad bash basic basics before better bish bosh briefly business but cleaner clued complementary concepts confidentiality context contrasts control control: controls could couple courses cover decades delivering depend depth diagram does doubtless each effort either elegant enabling enough ensure examples explaining far feb figure flagging forms from full fundamental good green harmful have here how images important incidents induction information infosec integrity interest intriguing job know little looking maintaining manage management may mean mentioning mitigating more most nature nblog next occasional occur occurring one onslaught ooh other outcome particularly people plus preparing presenter prevent preventing pro professional professionals proportion protect reasons red redraw refers reports represents returning right risk same screen security seems seminar seminars simple simpler simplification slide some spectra staff starting step stop stuff style suited supporting technology tempting than thanks that there thereby things think those thought time today too two uncertain under unknown use using wait way what when which why will words workers working worth wrap years |
| Tags | |
| Stories | |
| Notes | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.