The Role of Breach Controls in Network Security

Phyllis Lee of CIS Discusses Prioritizing Defense Steps Tony Morbin (@tonymorbin) • May 17, 2021

The Role of Breach Controls in Network Security

Phyllis Lee, senior director of controls, Center for Internet Security

If a breach happens, how can you defend your choice of controls - technical and procedural - to implement to improve your network security?

See Also: Keeping Your Side of the Street Clean: 5 Cyber-Hygiene Facts You Wish You Knew Earlier

In a video interview with Information Security Media Group as part of its RSA Conference 2021 coverage, Phyllis Lee, senior director of controls at the Center for Internet Security, discusses:

A preview of Controls Version 8 - what’s new and what’s been dropped;
What you should do first to control your data;
How CIS controls fit in with other frameworks.

Prior to joining CIS, Lee worked at the U.S. National Security Agency, focusing on the intersection between malware and virtualization, which included work that led the security automation strategy for the NSA Information Assurance Directorate.

Previous
Project 2030: Scenarios for the Future of Cybercrime

Next
Security for a New Era of Resilience

About the Author

Tony Morbin

Tony Morbin

Executive News Editor, EU

Morbin is a veteran cybersecurity and tech journalist, editor, publisher and presenter working exclusively in cybersecurity for the past decade – at ISMG, SC Magazine and IT Sec Guru. He previously covered computing, finance, risk, electronic payments, telecoms, broadband and computing, including at the Financial Times. Morbin spent seven years as an editor in the Middle East and worked on ventures covering Hong Kong and Ukraine.

You might also be interested in …

Elevating Digital Experiences: Meeting the Surging Expectations of Today's Users

Elevating Digital Experiences: Meeting the Surging Expectations of Today's Users

Achieving New SEC Cybersecurity Compliance Through Proactive Risk Management

Achieving New SEC Cybersecurity Compliance Through Proactive Risk Management

Multinational Manufacturing Corporation Automates Complex Manual Processes with TruOps

Multinational Manufacturing Corporation Automates Complex Manual Processes with TruOps

Recovering From a Cyberattack, Responding to the OCR, and Building a Cyber Resilient Posture for the Future: A Conversation with OrthoVirginia CIO, Terri Ripley

Recovering From a Cyberattack, Responding to the OCR, and Building a Cyber Resilient Posture for the Future: A Conversation with OrthoVirginia CIO, Terri Ripley

Partnership Insecurity: Practice the Art of Diligence

►

Partnership Insecurity: Practice the Art of Diligence

How to Mitigate Gaps in Your Front-Line of Cyber Defense

How to Mitigate Gaps in Your Front-Line of Cyber Defense

Critical Differences Between HIPAA Security Evaluations and Risk Analysis

Critical Differences Between HIPAA Security Evaluations and Risk Analysis

Discover the Essentials of Third-Party Cyber Risk Management

Discover the Essentials of Third-Party Cyber Risk Management

Forrester Report | Why Isn’t Your Organization Prioritizing Third-Party Risk?

Forrester Report | Why Isn’t Your Organization Prioritizing Third-Party Risk?

Around the Network

Threat Modeling Essentials for Generative AI in Healthcare

Threat Modeling Essentials for Generative AI in Healthcare

Critical Considerations for Generative AI Use in Healthcare

Critical Considerations for Generative AI Use in Healthcare

Addressing Security Gaps and Risks Post-M&A in Healthcare

Addressing Security Gaps and Risks Post-M&A in Healthcare

Why OT Security Keeps Some Healthcare Leaders Up at Night

Why OT Security Keeps Some Healthcare Leaders Up at Night

Inside Look: FDA's Cyber Review Process for Medical Devices

Inside Look: FDA's Cyber Review Process for Medical Devices

The State of Security Leadership

The State of Security Leadership

Why Entities Should Review Their Online Tracker Use ASAP

Why Entities Should Review Their Online Tracker Use ASAP

Why Connected Devices Are Such a Risk to Outpatient Care

Why Connected Devices Are Such a Risk to Outpatient Care

Generative AI: Embrace It, But Put Up Guardrails

Generative AI: Embrace It, But Put Up Guardrails

Zero Trust, Auditability and Identity Governance

Zero Trust, Auditability and Identity Governance

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing inforisktoday.com, you agree to our use of cookies.