A Logo

Feel free to include my content in your page via my
RSS feed

Help Irongeek.com pay for
bandwidth and research equipment:

Search Irongeek.com:

Affiliates:
ISDPodcast Button
RootSecure Button
Social-engineer-training Button
Irongeek Button

Web Hosting:
Dreamhost Logo
Help Irongeek.com pay for bandwidth and research equipment:

paypalpixle


SMB SRMF for identifying top 10 risks - Jim Peeler from BSides Rhode Island 2013 (Hacking Illustrated Series InfoSec Tutorial Videos)

SMB SRMF for identifying top 10 risks - Jim Peeler
BSides Rhode Island 2013

Presenter: Jim Peeler

Title: SMB SRMF for identifying top 10 risks

Abstract: Small Medium Business (SMB) today are facing an ever increasing Cyber Security risks to their business. I will briefly discuss the 2012 & 21013 Cyber risk statistics SMBs face; from both the Verizon Data Breach Investigation (DBIR) and Symantec Internet Security Threat (ISTR) Reports. I then will look at a generic evaluation to Security Risk Management Frameworks (SRMF) for SMBs; and compare / contrast 4 major SRMFs. Next (briefly) we need to look at SRMF vs. Audit Management. Finally I will suggest a HoQ approach for SMBs to use to determine their ýtop 10 security risksţ to their business. The HoQ is used as an introduction to SRMF to addresses PII and PCI-DSS requirements for their business; but adds an employee engagement approach, an internal risk assessments, security awareness training & the foundation for a security policy for their business. As the DBIR & ISTRÝs conclude, SMBs will need help.

Recorded at BSidesRI 2013.

Back to BSidesRI 2013 video list

Printable version of this article

15 most recent posts on Irongeek.com:


If you would like to republish one of the articles from this site on your webpage or print journal please contact IronGeek.

Copyright 2014, IronGeek
Louisville / Kentuckiana Information Security Enthusiast