Assessment w/ CSF 2.0 | FINAL (7/7) | Study GRC
In this live stream, we wrap up the governance section of our cybersecurity program using the NIST CSF 2.0 framework. We focus on supply chain risk management, policy development, and the importance of documentation and stakeholder buy-in. Join us as we assess our progress, discuss third-party integration in risk strategies, and outline future steps toward compliance. Connect with our community on Discord for more resources!
Chapters
00:00 Welcome and Introduction to GRCMafia
04:22 Community Engagement and Resources
05:42 Cybersecurity Supply Chain Management Overview
06:44 Risk Management in Partnerships
08:11 Integrating Supply Chain Security Practices
10:31 Incident Planning and Third-Party Involvement
12:36 Understanding Supplier Risks
14:14 Establishing Cybersecurity Requirements in Contracts
16:00 Roles and Responsibilities in Cybersecurity
19:06 Developing Cybersecurity Management Strategies
22:34 Evaluating Cybersecurity Risk Management Performance
26:27 Adjusting Cybersecurity Strategies
29:41 Policy Development and Maintenance
33:02 Establishing Risk Management Objectives
37:07 Communicating Risk Response Options
39:06 Integrating Cybersecurity in Enterprise Risk Management
40:54 Understanding Legal and Regulatory Requirements
43:49 Next Steps and Future Plans
-
💬 Leave a comment with your thoughts, requests, and questions!
✅ Is this your vibe? Consider liking and subscribing to see more of it!
🚀 Join the Study GRC community:
Website: https://studygrc.org
Discord: https://discord.studygrc.org