Assessment w/ CSF 2.0 | Part 4 | Study GRC
Join Chris Whitlock and the GRC Mafia as we continue the NIST CSF 2.0 assessment. Discussing key controls, the need for documentation, and incident recovery strategies. The stream also covers a discussion about organizational roles like CIO and CISO, breach declarations, and chain of custody, with insights from PBO.
Chapters
00:00 Introduction to GRC Mafia and Community Engagement
07:16 CSF 2.0 Compliance Assessment Overview
10:47 Incident Recovery Planning and Documentation
19:27 Incident Response and Mitigation Strategies
28:05 CISO and CIO Roles in Incident Management
30:07 Establishing Incident Response Protocols
36:06 Understanding Chain of Custody in Cybersecurity
39:30 The Role of Legal in Incident Management
46:34 Navigating ISO Standards vs. NIST
53:33 The Importance of Compliance in Cybersecurity
01:00:40 Outsourcing Incident Response and Risk Management
-
💬 Leave a comment with your thoughts, requests, and questions!
✅ Is this your vibe? Consider liking and subscribing to see more of it!
🚀 Join the Study GRC community:
Website: https://studygrc.org
Discord: https://discord.studygrc.org