NIST SP 800-53, Revision 5 Security Controls for Information Systems and Organizations – 1 overview

DIARMF, diarmf - implement, diarmf - select, information system compliance, NIST Security Framework, risk management, , , ,

NIST SP 800-53, Revision 5 Security Controls for Information Systems and Organizations – 1 overview

To download the slide go to:
https://securitycompliance.thinkific.com

NIST Special Publication 800-53, Revision 5
Security and Privacy Controls
Final Public Draft: October 2018
Final Publication: December 2018
Source: https://csrc.nist.gov/projects/risk-m…

NIST Special Publication 800-53A, Revision 5
Assessment Procedures for Security and Privacy Controls
Initial Public Draft: March 2019
Final Public Draft: June 2019
Final Publication: September 2019

There are 6 major objectives for this update—
-Making the security and privacy controls more outcome-based by changing the structure of the controls;

-Fully integrating the privacy controls into the security control catalog creating a consolidated and unified set of controls for information systems and organizations

-Separating the control selection process from the actual controls: systems engineers, software developers, enterprise architects; and mission/business owners

-Promoting integration with different risk management and cybersecurity approaches and lexicons, including the Cybersecurity Framework

-Clarifying the relationship between security and privacy to improve the selection of controls necessary to address the full scope of security and privacy risks

6 Figure IT Security

6 Figures in IT Security “cybersecurity” (Do you Want this? If so, sign up here)

cyberspace workforce, DIARMF, Information Assurance, information system compliance, IT Certifications, IT Security Jobs, Risk Management For DoD IT, security compliance, ,

Course site: https://securitycompliance.thinkific.com

I am thinking of doing a course on how to make 6 figures in IT Security. What do you think? Is this something you would be interested in? This is something I know a lot about.

I would explain:
The landscape of IT Security
Career paths in IT Security
How to choose the right path
How to prepare for that path
What kinds of IT security jobs make 6 figures
What places and companies pay 6 figures
What certifications, degrees and experience you need to start
How to build a bad ass IT security resume
where to post it
how to respond once offers start coming in

IT security position job Q&A (part 1)

cyberspace workforce, DIACAP, DIARMF Jobs, information system compliance, IT Certifications, IT Security Jobs, Risk Management For DoD IT, roles, , , , , ,

Check out my FREE courses at: https://securitycompliance.thinkific.com

In this video we read some of your questions about getting IT Security Jobs.

masaki23joe
“I have a B.A in Telecommunications, would this work for this career field.” see the answer at 00:00:45

shawn 08
“Hey Bruce I got my security + and cap. What do you suggest on how to get into the risk management/ security auditing field when someone doesn’t have any experience? I do have 7 years experience in desktop support and data center monitoring just want to try a different field but not sure how to go about this.”
answer at 00:02:53

David petrell
“What training is need to get into the security field? I have a BS in information security and working a MS in Cybersecurity and working on getting my CEH cert. What are ways that I can get into the security field as I don’t have any security experience and most jobs postings are wanting at least 4 to 5 years of experience”
answer at 00:06:26

diacap tarry town

DIACAP Compliance Engineer and Information Assurance Lead Jobs (risk management framework)

Assurance Technology, certification & accreditation, DIACAP, DIARMF, Information Assurance, Information Assurance Jobs, information system compliance, IT Security Jobs, NIST Security Framework, risk management, Risk Management For DoD IT, security compliance, ,

Role: DIACAP Compliance Engineer
Location: Tarrytown, NY
Duration: 6+ months

Enterprise Solution Inc.
500 E. Diehl Road, Suite 130, Naperville, IL 60563
Office: # 630-214-9485
E-Mail : pradyut@enterprisesolutioninc.com
Gmail : pradyut10.esi@gmail.com

Title: Information Assurance Lead
Location: Aberdeen, MD
Client: Federal
Duration: Full Time

Home


8251 Greensboro Drive, 9th Floor

McLean VA 22102
yogeshk@etalentnetwork.com

Office: (877) 715-3865 Ext.328

I get people contacting me every week about jobs all around the US! Today, I am going to show you a couple that I received recently. I hope that it will give you some idea of what employers and contracts look for in security compliance professionals.

What is payment card industry PCI data security standard DSS?

What is payment card industry PCI data security standard DSS?

PCI DSS, security compliance, , ,

What is payment card industry PCI data security standard DSS?

I got the chance to talk to a Payment Card Industry (PCI) professional. James is in the PCI IT industry and tells about it from inside the field. It is a great opportunity to learn about this growing career path.

We talked about how the PCI security standard compares to the Risk Management Framework.

Here are some of the resources we talked about:
https://www.pcisecuritystandards.org/pci_security/
https://www.pcicomplianceguide.org/

Enroll to learn MORE on security compliance:
https://securitycompliance.thinkific.com