An award-winning cannabis podcast for women, by women. Hear joyful stories and useful advice about cannabis for health, well-being, and fun—especially for needs specific to women like stress, sleep, and sex. We cover everything from: What’s the best weed for sex? Can I use CBD for menstrual cramps? What are the effects of the Harlequin strain or Gelato strain? And, why do we prefer to call it “cannabis” instead of “marijuana”? We also hear from you: your first time buying legal weed, and how ...
…
continue reading
Content provided by Shon Gerber, vCISO, CISSP, Cybersecurity Consultant and Entrepreneur, Shon Gerber, VCISO, CISSP, and Cybersecurity Consultant. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Shon Gerber, vCISO, CISSP, Cybersecurity Consultant and Entrepreneur, Shon Gerber, VCISO, CISSP, and Cybersecurity Consultant or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://player.fm/legal.
Similar to CISSP Cyber Training Podcast - CISSP Training Program
1
Real English Conversations Podcast – English for Global Professionals | Speak Clearly & Confidently at Work
Real English Conversations: Amy Whitney & Curtis Davies - English Podcast
1k
39
🚀 Real English Conversations – English for Global Professionals Are you an international professional working in English? Do you need to speak confidently and naturally in high-stakes business situations? You’ve just found your competitive advantage. 🎧 Welcome to the Real English Conversations Podcast — the go-to resource for intermediate to advanced English learners who want to communicate like a professional, not like a textbook. Hosted by Teacher Curtis Davies, Confidence, Pronunciation & ...
…
continue reading
Everyone has a dream. But sometimes there’s a gap between where we are and where we want to be. True, there are some people who can bridge that gap easily, on their own, but all of us need a little help at some point. A little boost. An accountability partner. A Snooze Squad. In each episode, the Snooze Squad will strategize an action plan for people to face their fears. Guests will transform their own perception of their potential and walk away a few inches closer to who they want to become ...
…
continue reading
The key to learning Korean is how easy it is to stay motivated to learn the language. At TalkToMeInKorean.com, we provide a systematic curriculum of easy-to-follow lessons, and a wide selection of self-study Korean-learning books!
…
continue reading
Culips English Podcast: Practical English Learning Made Fun Learn and Explore: Join Culips for an exciting English learning journey. Our podcast focuses on teaching English idioms, slang, and phrasal verbs through fun and engaging conversations. Each episode helps you master English for real-life situations. Unique Learning Experience: Culips stands out by blending language skills with cultural insights. Our diverse hosts make learning relatable, covering a variety of everyday topics. You’ll ...
…
continue reading
Are you looking for more happiness, success and vitality in your life? Get inspired each week with wellness and performance expert, Integrative Medicine Fellow, author & keynote speaker, Kristel Bauer. Live Greatly shares empowering conversations and insights about happiness, wellness & success to support your personal and professional development. Kristel talks with top experts, leaders and inspiring individuals to help you embrace a growth mindset and excel in your work/life. Kristel then ...
…
continue reading
Hosted by former Marvel entertainment lawyer Paul Sarker and entertainment enthusiast Mesh Lakhani, Better Call Paul will delve into the business and legal issues at play behind the glitz and glam. This show takes you beyond the catchy headlines to find out what’s really at play behind the scenes and gives you an introduction to the business side of show business.
…
continue reading
Named by Oprah as a thought leader for the next generation and one of Inc.’s 500 fastest growing companies, Marie Forleo’s goal is to help you become the person you most want to be. In this show, Marie and her guests share actionable strategies for greater happiness, success, motivation, creativity, productivity, love, health, contribution and fulfillment — often with a lot of laughs. From business, marketing and career advice, to tackling failure, disappointment and fear, to philanthropy an ...
…
continue reading
Learn German in coffee-break lessons from the Radio Lingua Network. In each lesson we'll focus on the language you need to know and before long you'll be making yourself understood with native German speakers. 386357 Hosted on Acast. See acast.com/privacy for more information.
…
continue reading
With Coffee Break Italian you can learn Italian where and when it suits you. In Season 1, you'll join teacher Mark, learner Katie and native speaker Francesca in our 15-minute lessons, and build your confidence in the language, learning Italian from scratch. Take your learning further with Season 2 in which Mark and Francesca are joined by learner Isla. Hosted on Acast. See acast.com/privacy for more information.
…
continue reading
Player FM - Podcast App
Go offline with the Player FM app!
Go offline with the Player FM app!
))
CCT 266: Collect Security Process Data (CISSP Domain 6.3)
Manage episode 497018732 series 3464644
Content provided by Shon Gerber, vCISO, CISSP, Cybersecurity Consultant and Entrepreneur, Shon Gerber, VCISO, CISSP, and Cybersecurity Consultant. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Shon Gerber, vCISO, CISSP, Cybersecurity Consultant and Entrepreneur, Shon Gerber, VCISO, CISSP, and Cybersecurity Consultant or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://podcastplayer.com/legal.
Check us out at: https://www.cisspcybertraining.com/
Get access to 360 FREE CISSP Questions: https://www.cisspcybertraining.com/offers/dzHKVcDB/checkout
Get access to my FREE CISSP Self-Study Essentials Videos: https://www.cisspcybertraining.com/offers/KzBKKouv
A shocking cybersecurity case recently hit the headlines—a 50-year-old IT contractor sentenced to over 8 years in prison for acting as a mule for North Korean hackers. What makes this story particularly alarming? Companies were unknowingly shipping laptops directly to her, providing legitimate access credentials that she then shared with foreign adversaries. This case serves as a powerful reminder of why third-party risk management isn't just a compliance exercise but a critical security function.
Diving into CISSP Domain 6.3, we explore the fundamental security processes that could prevent such compromises. User account lifecycle management forms the backbone of organizational security, from proper identity verification during onboarding to the principle of least privilege and role-based access controls. We examine the critical differences between disabling and deleting accounts during deprovisioning, and why service accounts deserve special attention as high-value targets for attackers.
Security assessments and audits provide the verification mechanisms needed to ensure your controls are both properly designed and effectively operating. Understanding the distinction between vulnerability assessments, penetration tests, and formal audits helps you build a comprehensive evaluation strategy. We clarify the differences between SOC Type 1 and Type 2 reports when evaluating service providers, and explain why metrics must be measurable, actionable, relevant, timely, and attributional (SMARTA) to drive meaningful security improvements.
Perhaps most critically, we address backup verification strategies—because discovering your backups are corrupted during a recovery situation is a career-limiting event. Through practical guidance on security training approaches, enforcement mechanisms, and measurement techniques, this episode provides both CISSP candidates and practicing security professionals with actionable insights to strengthen their security programs. Ready to transform your security posture? Listen now, then visit CISSPCyberTraining.com for more resources to accelerate your cybersecurity journey.
Gain exclusive access to 360 FREE CISSP Practice Questions delivered directly to your inbox! Sign up at FreeCISSPQuestions.com and receive 30 expertly crafted practice questions every 15 days for the next 6 months—completely free! Don’t miss this valuable opportunity to strengthen your CISSP exam preparation and boost your chances of certification success. Join now and start your journey toward CISSP mastery today!
Chapters
1. Intro and IT Mule Case Study (00:00:00)
2. Third-Party Risk Management Concerns (00:05:26)
3. Domain 6.3: User Account Lifecycle (00:10:12)
4. Privileged Accounts and Service Accounts (00:17:03)
5. Security Assessments and Audits (00:24:02)
6. Metrics, KPIs, and KRIs (00:30:15)
7. Backup Verification Strategies (00:37:27)
278 episodes
Share
Manage episode 497018732 series 3464644
Content provided by Shon Gerber, vCISO, CISSP, Cybersecurity Consultant and Entrepreneur, Shon Gerber, VCISO, CISSP, and Cybersecurity Consultant. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Shon Gerber, vCISO, CISSP, Cybersecurity Consultant and Entrepreneur, Shon Gerber, VCISO, CISSP, and Cybersecurity Consultant or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://podcastplayer.com/legal.
Check us out at: https://www.cisspcybertraining.com/
Get access to 360 FREE CISSP Questions: https://www.cisspcybertraining.com/offers/dzHKVcDB/checkout
Get access to my FREE CISSP Self-Study Essentials Videos: https://www.cisspcybertraining.com/offers/KzBKKouv
A shocking cybersecurity case recently hit the headlines—a 50-year-old IT contractor sentenced to over 8 years in prison for acting as a mule for North Korean hackers. What makes this story particularly alarming? Companies were unknowingly shipping laptops directly to her, providing legitimate access credentials that she then shared with foreign adversaries. This case serves as a powerful reminder of why third-party risk management isn't just a compliance exercise but a critical security function.
Diving into CISSP Domain 6.3, we explore the fundamental security processes that could prevent such compromises. User account lifecycle management forms the backbone of organizational security, from proper identity verification during onboarding to the principle of least privilege and role-based access controls. We examine the critical differences between disabling and deleting accounts during deprovisioning, and why service accounts deserve special attention as high-value targets for attackers.
Security assessments and audits provide the verification mechanisms needed to ensure your controls are both properly designed and effectively operating. Understanding the distinction between vulnerability assessments, penetration tests, and formal audits helps you build a comprehensive evaluation strategy. We clarify the differences between SOC Type 1 and Type 2 reports when evaluating service providers, and explain why metrics must be measurable, actionable, relevant, timely, and attributional (SMARTA) to drive meaningful security improvements.
Perhaps most critically, we address backup verification strategies—because discovering your backups are corrupted during a recovery situation is a career-limiting event. Through practical guidance on security training approaches, enforcement mechanisms, and measurement techniques, this episode provides both CISSP candidates and practicing security professionals with actionable insights to strengthen their security programs. Ready to transform your security posture? Listen now, then visit CISSPCyberTraining.com for more resources to accelerate your cybersecurity journey.
Gain exclusive access to 360 FREE CISSP Practice Questions delivered directly to your inbox! Sign up at FreeCISSPQuestions.com and receive 30 expertly crafted practice questions every 15 days for the next 6 months—completely free! Don’t miss this valuable opportunity to strengthen your CISSP exam preparation and boost your chances of certification success. Join now and start your journey toward CISSP mastery today!
Chapters
1. Intro and IT Mule Case Study (00:00:00)
2. Third-Party Risk Management Concerns (00:05:26)
3. Domain 6.3: User Account Lifecycle (00:10:12)
4. Privileged Accounts and Service Accounts (00:17:03)
5. Security Assessments and Audits (00:24:02)
6. Metrics, KPIs, and KRIs (00:30:15)
7. Backup Verification Strategies (00:37:27)
278 episodes
All episodes
×
Welcome to Player FM!
Player FM is scanning the web for high-quality podcasts for you to enjoy right now. It's the best podcast app and works on Android, iPhone, and the web. Signup to sync subscriptions across devices.
Similar to CISSP Cyber Training Podcast - CISSP Training Program
An award-winning cannabis podcast for women, by women. Hear joyful stories and useful advice about cannabis for health, well-being, and fun—especially for needs specific to women like stress, sleep, and sex. We cover everything from: What’s the best weed for sex? Can I use CBD for menstrual cramps? What are the effects of the Harlequin strain or Gelato strain? And, why do we prefer to call it “cannabis” instead of “marijuana”? We also hear from you: your first time buying legal weed, and how ...
…
continue reading
1
Real English Conversations Podcast – English for Global Professionals | Speak Clearly & Confidently at Work
Real English Conversations: Amy Whitney & Curtis Davies - English Podcast
1k39
🚀 Real English Conversations – English for Global Professionals Are you an international professional working in English? Do you need to speak confidently and naturally in high-stakes business situations? You’ve just found your competitive advantage. 🎧 Welcome to the Real English Conversations Podcast — the go-to resource for intermediate to advanced English learners who want to communicate like a professional, not like a textbook. Hosted by Teacher Curtis Davies, Confidence, Pronunciation & ...
…
continue reading
Everyone has a dream. But sometimes there’s a gap between where we are and where we want to be. True, there are some people who can bridge that gap easily, on their own, but all of us need a little help at some point. A little boost. An accountability partner. A Snooze Squad. In each episode, the Snooze Squad will strategize an action plan for people to face their fears. Guests will transform their own perception of their potential and walk away a few inches closer to who they want to become ...
…
continue reading
The key to learning Korean is how easy it is to stay motivated to learn the language. At TalkToMeInKorean.com, we provide a systematic curriculum of easy-to-follow lessons, and a wide selection of self-study Korean-learning books!
…
continue reading
Culips English Podcast: Practical English Learning Made Fun Learn and Explore: Join Culips for an exciting English learning journey. Our podcast focuses on teaching English idioms, slang, and phrasal verbs through fun and engaging conversations. Each episode helps you master English for real-life situations. Unique Learning Experience: Culips stands out by blending language skills with cultural insights. Our diverse hosts make learning relatable, covering a variety of everyday topics. You’ll ...
…
continue reading
Are you looking for more happiness, success and vitality in your life? Get inspired each week with wellness and performance expert, Integrative Medicine Fellow, author & keynote speaker, Kristel Bauer. Live Greatly shares empowering conversations and insights about happiness, wellness & success to support your personal and professional development. Kristel talks with top experts, leaders and inspiring individuals to help you embrace a growth mindset and excel in your work/life. Kristel then ...
…
continue reading
Hosted by former Marvel entertainment lawyer Paul Sarker and entertainment enthusiast Mesh Lakhani, Better Call Paul will delve into the business and legal issues at play behind the glitz and glam. This show takes you beyond the catchy headlines to find out what’s really at play behind the scenes and gives you an introduction to the business side of show business.
…
continue reading
Named by Oprah as a thought leader for the next generation and one of Inc.’s 500 fastest growing companies, Marie Forleo’s goal is to help you become the person you most want to be. In this show, Marie and her guests share actionable strategies for greater happiness, success, motivation, creativity, productivity, love, health, contribution and fulfillment — often with a lot of laughs. From business, marketing and career advice, to tackling failure, disappointment and fear, to philanthropy an ...
…
continue reading
Learn German in coffee-break lessons from the Radio Lingua Network. In each lesson we'll focus on the language you need to know and before long you'll be making yourself understood with native German speakers. 386357 Hosted on Acast. See acast.com/privacy for more information.
…
continue reading
With Coffee Break Italian you can learn Italian where and when it suits you. In Season 1, you'll join teacher Mark, learner Katie and native speaker Francesca in our 15-minute lessons, and build your confidence in the language, learning Italian from scratch. Take your learning further with Season 2 in which Mark and Francesca are joined by learner Isla. Hosted on Acast. See acast.com/privacy for more information.
…
continue reading
Player FM - Podcast App
Go offline with the Player FM app!
Go offline with the Player FM app!
