203 Results for: "Josh More"
April 10, 2018 | Malware and Advanced Threats
By Josh More, IANS Faculty
Verizon's latest Data Breach Investigations Report (DBIR) just published, and the results are (as usual) a bit disheartening. In this report, IANS Faculty Josh More offers his take on this latest installment and suggests some concrete steps organizations can take to better protect themselves.
Read More »
March 8, 2018 | Metrics and Reporting
By Josh More, IANS Faculty
A successful metrics program helps tell security's story in a way that fosters business engagement and support, but what's the best way to get there? In this Ask-an-Expert written response, IANS Faculty Josh More discusses the difference between operational and strategic metrics, and offers tips for getting started using FAIR.
Read More »
March 5, 2018 | IT Service Management
By Josh More, IANS Faculty
When starting a GRC program from scratch, it can be difficult to foresee which ingredients are critical to success and which aren't. In this Ask-an-Expert written response, IANS Faculty Josh More details the critical elements to include and pitfalls to avoid, while urging a high-level focus on workflows, culture and stakeholder alignment.
Read More »
February 20, 2018 | Vendor and Partner Management
By Josh More, IANS Faculty
How granular should vendor questionnaires and third-party assessments be? Is there a point of diminishing returns? In this Ask-an-Expert written response, IANS Faculty Josh More recommends keeping the ultimate goal in mind and tailoring assessments to a vendor's level of importance to the business.
Read More »
January 25, 2018 | Patch Management
By Josh More, IANS Faculty
Patching Windows systems is difficult enough without adding third-party tools like Java, Adobe and others to the mix. In this Ask-an-Expert written response, IANS Faculty Josh More explains how achieving patch management maturity requires a combination of imaging, deployment, patching and vulnerability scanning technologies, plus a large degree of automation.
Read More »
January 17, 2018 | Recruiting, Hiring and Retention
By Josh More, IANS Faculty
Screening potential U.S.-based employees is difficult enough, but scaling background checks across vendors and international employees is even more daunting. In this Ask-an-Expert written response, IANS Faculty Josh More details the various types of background checks available and common pitfalls to avoid when leveraging them. He also provides tips for expanding the program to encompass vendor employees and international workers, and a roadmap for automating the process over time.
Read More »
December 7, 2017 | Big Data
By Josh More, IANS Faculty
Before deploying UDM, it's important to understand what it is - and what it isn't. In this Ask-an-Expert written response, IANS Faculty Josh More provides an overview of the UDM market, including top features to look for and the capabilities of newer as-a-service offerings. He also explains why having a good level of data control is a prerequisite for UDM success.
Read More »
October 30, 2017 | Risk Management
By Josh More, IANS Faculty
When discussing risks and prioritizing controls, it's important that security and the business use a common language to collaboratively communicate recommendations to upper management. In this Ask-an-Expert written response, IANS Faculty Josh More details how the CIS Critical Controls can provide a simple risk taxonomy that helps keep everyone on the same page.
Read More »
October 23, 2017 | Risk Management
By Josh More, IANS Faculty
When it comes to managing risk, no one risk framework can truly rule them all. In this Ask-an-Expert written response, IANS Faculty Josh More explains that organizations face different types of risks (strategic, tactical and operational) and details some ways to address them all without force-fitting a framework, bogging down processes or oversimplifying the analysis.
Read More »
September 21, 2017 | Incident Investigations, Handling and Tracking
By Josh More, IANS Faculty
Creating incident response (IR) procedures for a small IT organization isn't easy. In this Ask-an Expert written response, IANS Faculty Josh More provides an IR playbook for a firewall breach that ensures the response is both lightweight and effective.
Read More »