topic Re: Basic network hygeine and security fundamentals prevent the vast majority of cyber incidents in Welcome https://community.isc2.org/t5/Welcome/Basic-network-hygeine-and-security-fundamentals-prevent-the-vast/m-p/4230#M260 <P>I often say that if an organization doesn't do the first five critical security controls, the other 15 don't really matter.&nbsp;</P><P>&nbsp;</P><P>For an interesting addition to that, Rob Joyce, the head of NSA's Tailored Access Operations (TAO) delivered a rare public talk at the USENIX Enigma conference in 2016. The major takeaway from that is that application whitelisting is that "one thing" that dramatically raises the cost of successfully prosecuting an attack, even for state sponsored actors.</P><P>&nbsp;</P><P>A video of that talk can be found here:</P><P>&nbsp;</P><P><A href="https://www.youtube.com/watch?v=bDJb8WOJYdA" target="_blank">https://www.youtube.com/watch?v=bDJb8WOJYdA</A></P><P>&nbsp;</P><P>&nbsp;</P><P>&nbsp;</P> Mon, 11 Dec 2017 16:46:12 GMT Badfilemagic 2017-12-11T16:46:12Z Basic network hygeine and security fundamentals prevent the vast majority of cyber incidents https://community.isc2.org/t5/Welcome/Basic-network-hygeine-and-security-fundamentals-prevent-the-vast/m-p/4224#M259 <P>The seemingly daily cyber incidents&nbsp;and and data breaches we read about reinforce&nbsp;the need to adhere to basic network hygiene and security fundamentals. Event the most technically proficient exploit is usually foiled through comprehensive system patching, permissions and user rights management, and a team&nbsp;well trained in the basics. see more at&nbsp;<A href="http://managethenet.blogspot.com" target="_blank">http://managethenet.blogspot.com</A>.</P> Mon, 09 Oct 2023 08:22:28 GMT https://community.isc2.org/t5/Welcome/Basic-network-hygeine-and-security-fundamentals-prevent-the-vast/m-p/4224#M259 StevenJ6052 2023-10-09T08:22:28Z Re: Basic network hygeine and security fundamentals prevent the vast majority of cyber incidents https://community.isc2.org/t5/Welcome/Basic-network-hygeine-and-security-fundamentals-prevent-the-vast/m-p/4230#M260 <P>I often say that if an organization doesn't do the first five critical security controls, the other 15 don't really matter.&nbsp;</P><P>&nbsp;</P><P>For an interesting addition to that, Rob Joyce, the head of NSA's Tailored Access Operations (TAO) delivered a rare public talk at the USENIX Enigma conference in 2016. The major takeaway from that is that application whitelisting is that "one thing" that dramatically raises the cost of successfully prosecuting an attack, even for state sponsored actors.</P><P>&nbsp;</P><P>A video of that talk can be found here:</P><P>&nbsp;</P><P><A href="https://www.youtube.com/watch?v=bDJb8WOJYdA" target="_blank">https://www.youtube.com/watch?v=bDJb8WOJYdA</A></P><P>&nbsp;</P><P>&nbsp;</P><P>&nbsp;</P> Mon, 11 Dec 2017 16:46:12 GMT https://community.isc2.org/t5/Welcome/Basic-network-hygeine-and-security-fundamentals-prevent-the-vast/m-p/4230#M260 Badfilemagic 2017-12-11T16:46:12Z