Ssn 2 Ep 15 Zero Trust, Pt 3
The Cyber Savvy Cafe
Ssn 2 Ep 15 Zero Trust Pt 3 Beyond the basic, foundational things you should already have in place, what’s the next thing you need to do to implement a Zero Trust approach to network security? 1:04: It starts with the regulatory requirements a company must meet, then layer in policies and procedures. 3:07: Every time a user wants to access resources, they are going to need to prove their credentials. 3:16: NIST has developed a standard for Zero Trust, 800-207, which lays out what an enterprise needs to do to meet the zero trust model. 4:58: Access to individual...
info_outline
Ssn 2 Ep 14: Zero Trust, Pt 2
The Cyber Savvy Cafe
Ssn 2 Ep 14: Zero Trust, Pt 2 Cybercrime is projected to cost the world 10.5 trillion annually by 2025. Hackers are looking for the easiest targets, make sure you’re not one of them. Zero Trust is a layered approach to cybersecurity that structures your network so you can do just that. Today's episode looks at foundational elements you better already have in place. Show Notes: :37: The big business of hacking 1:13: Why and how cybercrime has accelerated since the pandemic 1:42: Some of the reasons home workstations are vulnerable to cyber attacks ...
info_outline
Ssn 2 Ep 13 Zero Trust Pt. 1
The Cyber Savvy Cafe
Ssn 2 Ep 12: Zero Trust Cybercrime is projected to cost the world 10.5 trillion annually by 2025. Hackers are looking for the easiest targets, make sure you’re not one of them. Zero Trust is a way of structuring your network so you can do just that. Show Notes: :42: An overview of Zero Trust 1:25: What is Zero Trust Network Architecture? 2:15: Make sure you know who is accessing your data and how and when 2:42: What is the normal way companies have their network structured? A look at flat networks 3:13: Bare minimum—segment your network ...
info_outline
Ssn 2 Ep 12 What's Up With the Chip Shortage?
The Cyber Savvy Cafe
Ssn 2 Ep 12
info_outline
Ssn 2 Ep 11 Popular Techy Gadgets for Gift-Giving 2021
The Cyber Savvy Cafe
Ssn 2 Ep 11: Popular Techy Gadgets for Gift-Giving 2021
info_outline
Ssn 2 Ep 10 Navigating the Holidays, Cyber-Safely
The Cyber Savvy Cafe
Ssn 2 Ep 10: Navigating the Holidays, Cyber-Safely
info_outline
Ssn 2 Ep 9: Guess Who's Accountable
The Cyber Savvy Cafe
Ssn 2 Ep 9: Guess Who’s Accountable
info_outline
Ssn 2 Ep 8 Work From Anywhere
The Cyber Savvy Cafe
Ssn 2 Ep 8: Work From Anywhere
info_outline
Ssn 2 Ep 7: Will AI Replace Us?
The Cyber Savvy Cafe
Ssn 2 Ep 7: Will AI Replace Us?
info_outline
Ssn 2 Ep 6: Don't Die On Me Now
The Cyber Savvy Cafe
Ssn 2 Ep 6: Don’t Die on Me Now! You know the signs. The signs that your computer or mobile device is not going to last much longer--but you’re not ready to invest in a replacement. You may be able to get a little more life out of your aging devices and buy yourself some time! Show Notes :30: How can we get a little more life out of our devices? :53: Hard reset: Resetting your phone to factory settings. 1:21: Make sure you run backups of all your important data first. 2:26: Clearing your storage and freeing up space. Make sure you delete the cache for your photo...
info_outlineSsn 2 Ep 9: Guess Who’s Accountable
New regulations coming for cybersecurity providers: accountability, liability—and what that means for you.
Show Notes:
1:15: Discussion of new regulations that are coming for the managed services industry
1:40: What is the difference between MSPs and MSSPs?
3:10: How much trouble can you get into if you’re overselling your services?
4:30: Up until now, this industry has been without regulations
4:58: Service providers currently may not realize they don’t have the skill set required to work in this space
5:45: Other service providers and contractors have to go through continuing education and certification, but this has not been required for the managed services industry
6:48: Self-assessment forms from your cybersecurity insurance broker can help you determine what kind of cyber security measures you need to have in place
9:07: What kind of disclaimer should an MSP/MSSP have in place for clients who are refusing certain services: Signed Denial of Service letter
10:45: The importance for service providers to be aware of changing laws and regulations for their industry—keep breast of services that are no longer optional
12:12: Dept of Justice’s new regulations for MSP/MSSPs
13:46: Businesses may no longer be able to pick and choose what services they need
14:18: When filling out the questionnaires, don’t check “yes” if you’re not doing something
17:35: Special requirements and regulations for public or quasi-public companies
21:31: What’s the easiest way to keep your ear to the ground on changing regulations that will affect your business?
22:42: Current administration is pushing zero trust and Amazon’s offer of free security training
Links:
DOJ Vows to Prosecute Cybersecurity Fraud by MSPs, MSSPs and Government Contractors
Acting Assistant Attorney General Brian M. Boynton Delivers Remarks at the Cybersecurity and Infrastructure Security Agency (CISA) Fourth Annual National Cybersecurity Summit
Washington, DC
Wednesday, October 13, 2021
Deputy Attorney General Lisa O. Monaco Announces New Civil Cyber-Fraud Initiativehttps://www.justice.gov/opa/pr/deputy-attorney-general-lisa-o-monaco-announces-new-civil-cyber-fraud-initiative
Amazon Security Training:
https://aws.amazon.com/security/amazon-security-initiatives/
Your hosts: Rex Nance and Penny O'Halloran of East Atlantic Security, LLC @ https://EastAtlanticSecurity.com/
Voiceover Artist: Paul Kadach at www.voices.com