Cloudy With a Chance of Trust artwork

Talking standards with NIST Fellow Dr. Ron Ross

Cloudy With a Chance of Trust

English - August 15, 2022 16:07 - 49 minutes - 91.3 MB - ★★★★★ - 7 ratings
Tech News News Technology digital transformation cybersecurity cio ciso cloud security zero trust zscaler lisa lorenzin pam kubiatowski Homepage Download Apple Podcasts Google Podcasts Overcast Castro Pocket Casts RSS feed
Previous Episode: So long, not goodbye
Next Episode: Key NIST cybersecurity publications and how to apply them

The cybersecurity world can be divided into two halves--one above the waterline and one below it, says NIST’s Ron Ross. Whereas certification & accreditations (C&As) and assessment & authorizations (A&As) have focused on the former, more needs to be done below the surface to better safeguard hardware, software, and firmware. In this special episode, Ross explains the role of security systems engineering in that effort while taking host Pam Kubiatowski and CISO - Americas Brad Moldenhauer on an insider journey across the origins of standards, including SP 800-37, SP 800-53, FIPS 200, and FedRAMP.