Talking standards with NIST Fellow Dr. Ron Ross
Cloudy With a Chance of Trust
English - August 15, 2022 16:07 - 49 minutes - 91.3 MB - ★★★★★ - 7 ratingsTech News News Technology digital transformation cybersecurity cio ciso cloud security zero trust zscaler lisa lorenzin pam kubiatowski Homepage Download Apple Podcasts Google Podcasts Overcast Castro Pocket Casts RSS feed
Previous Episode: So long, not goodbye
The cybersecurity world can be divided into two halves--one above the waterline and one below it, says NIST’s Ron Ross. Whereas certification & accreditations (C&As) and assessment & authorizations (A&As) have focused on the former, more needs to be done below the surface to better safeguard hardware, software, and firmware. In this special episode, Ross explains the role of security systems engineering in that effort while taking host Pam Kubiatowski and CISO - Americas Brad Moldenhauer on an insider journey across the origins of standards, including SP 800-37, SP 800-53, FIPS 200, and FedRAMP.