CISO as a Service

آمار قابل توجه برای الویت دهی ریسک های امنیت محور

‎-آگاهي رساني امنيت سايبري-

Up2date 4 Defence Today,
Secure Tomorrow
@CisoasaService
1400.04.06

206 viewsAlireza Ghahrood, 04:13

CISO as a Service

NIST.SP.800_161r1_draft.pdf

4 MB

NIST SP 800-161 Rev.1 (Draft):
"Cyber Supply Chain Risk Management Practices for Systems and Organizations", 2021.
]-> https://csrc.nist.gov/publications/detail/sp/800-161/rev-1/draft

‎-آگاهي رساني امنيت سايبري-

Up2date 4 Defence Today,
Secure Tomorrow
@CisoasaService
1400.04.06

236 viewsAlireza Ghahrood, edited 04:14

CISO as a Service

D3FEND.pdf

1.7 MB

Research
"Toward a Knowledge Graph of Cybersecurity Countermeasures", MITRE, 2021.

‎-آگاهي رساني امنيت سايبري-

Up2date 4 Defence Today,
Secure Tomorrow
@CisoasaService
1400.04.06

245 viewsAlireza Ghahrood, edited 04:28

CISO as a Service

Atlassian_ATO.pdf

1.9 MB

Whitepaper
"A supply-chain breach:
Taking over an Atlassian account".

‎-آگاهي رساني امنيت سايبري-

Up2date 4 Defence Today,
Secure Tomorrow
@CisoasaService
1400.04.06

250 viewsAlireza Ghahrood, edited 04:29

CISO as a Service

Dark_Web_Investigation.pdf

5.4 MB

Tech book
"Dark Web Investigation
(Security Informatics and Law Enforcement)", 2021.

‎-آگاهي رساني امنيت سايبري-

Up2date 4 Defence Today,
Secure Tomorrow
@CisoasaService
1400.04.06

273 viewsAlireza Ghahrood, edited 04:32

CISO as a Service

https://www.linkedin.com/posts/alirezaghahrood_cybersecurity-security-innovation-activity-6814788163152683008-IqFL

#cybersecurity #security #innovation #privacy #privacy #datasecurity #cyber #cybercrime #cloudsecurity #informationsecurity #infosec…

شما در سازمانتان از چه قالب امنیت محوری استفاده می کنید؟

‎-آگاهي رساني امنيت سايبري-

Up2date 4 Defence Today,
Secure Tomorrow
@CisoasaService
1400.04.06

#cybersecurity #security #innovation #privacy #privacy #datasecurity #cyber #cybercrime #cloudsecurity…

245 viewsAlireza Ghahrood, 05:43

CISO as a Service

ZenGRC is a cloud-based and on-premise governance, risk and compliance (GRC) management solution. It serves businesses of all sizes in any industry, including technology, retail, consumer goods, health care and finance. Primary features include audit management, compliance management, contract and policy management, risk assessment and reporting.
ZenGRC helps users in internal auditing, compliance and information security teams. With it, these teams can manage and implement audit and compliance processes. It automates audit evidence collection, routine compliance and helps with the creation of new compliance programs. Other features include team collaboration, role-based access, project management, import and export and dashboards.

Managing compliance isn’t getting any easier.
Managing it with spreadsheets only makes it harder

https://www.linkedin.com/posts/alirezaghahrood_managing-compliance-isnt-getting-any-easier-activity-6814806100257333248-O9ug

‎-آگاهي رساني امنيت سايبري-

Up2date 4 Defence Today,
Secure Tomorrow
@CisoasaService
1400.04.06

Managing compliance isn’t getting any easier. | Alireza Ghahrood

273 viewsAlireza Ghahrood, 06:53

CISO as a Service

Get Ahead of yr Audits

https://www.linkedin.com/posts/alirezaghahrood_grc-services-activity-6814807458393927681-PnuK

‎-آگاهي رساني امنيت سايبري-

Up2date 4 Defence Today,
Secure Tomorrow
@CisoasaService
1400.04.06

GRC-Services | Alireza Ghahrood

Get Ahead of yr Audits

‎-آگاهي رساني امنيت سايبري-

Up2date 4 Defence Today,
Secure Tomorrow
@CisoasaService
1400.04.06

268 viewsAlireza Ghahrood, 06:53

CISO as a Service

Forwarded from HamidReza

سلام استاد
اگر دوست داشتین خدمت حضرتعالی:

https://events.sophos.com/americatha2021?cmp=123157

291 viewsAlireza Ghahrood, 08:02

CISO as a Service

This media is not supported in your browser

VIEW IN TELEGRAM

مميزي ميبايست بصورت فني و سيستمي در يك چرخه مشخص براي حوزه فناورانه و آي تي
سازمان لحاظ گردد، تا بتوان اشراف داشت به شرايط جاري سازمان، ريسك ها و چالش هاي جاري

و سپس برنامه ريزي كرد براي بهبود معماري، …. امنيت سازمان!

‎-آگاهي رساني امنيت سايبري-

Up2date 4 Defence Today,
Secure Tomorrow
@CisoasaService
1400.04.06

314 viewsAlireza Ghahrood, edited 08:12

CISO as a Service

https://courses.thecyberinst.org/collections
Free OSINT Courses and Free OSINT Challenges.

Payed also available if interested. Check this institution.

‎-آگاهي رساني امنيت سايبري-

Up2date 4 Defence Today,
Secure Tomorrow
@CisoasaService
1400.04.06

301 viewsAlireza Ghahrood, 16:05

CISO as a Service

Dell_Bios_Disconnect.pdf

450.1 KB

Threat_Research
"BIOS Disconnect", 2021.
// Eclypsium Discovers Multiple Vulnerabilities Affecting 128 Dell Models via Dell Remote OS Recovery and Firmware Update Capabilities
]-> https://eclypsium.com/2021/06/24/biosdisconnect

‎-آگاهي رساني امنيت سايبري-

Up2date 4 Defence Today,
Secure Tomorrow
@CisoasaService
1400.04.06

323 viewsAlireza Ghahrood, edited 16:06

CISO as a Service

BPF_Internals.pdf

2.7 MB

Research
"BPF Internals (eBPF):
Tracing Examples", 2021.
]-> https://brendangregg.com/blog/2021-06-15/bpf-internals.html

‎-آگاهي رساني امنيت سايبري-

Up2date 4 Defence Today,
Secure Tomorrow
@CisoasaService
1400.04.06

333 viewsAlireza Ghahrood, edited 16:07

CISO as a Service

This media is not supported in your browser

VIEW IN TELEGRAM

🤣😂😅🤪🤲🏻

‎-آگاهي رساني امنيت سايبري-

Up2date 4 Defence Today,
Secure Tomorrow
@CisoasaService
1400.04.06

363 viewsAlireza Ghahrood, 16:19

CISO as a Service

#جذب #استخدام

جذب دو متخصص، كارشناس مجازي سازي ، ترجيحا آشنا به استوريج EMC
رنج حقوق ٧-١١ م ت
يك شركت خصوصي خوش نام

ارسال رزومه مرتبط و به روز به
اي دي تلگرام
@alirezaghahrood
912/196 4383

‎-آگاهي رساني امنيت سايبري-

Up2date 4 Defence Today,
Secure Tomorrow
@CisoasaService
1400.04.07

332 viewsAlireza Ghahrood, 06:16

CISO as a Service

The hackers Hackers responsible for the SolarWinds breach also compromised a Microsoft customer service agent and attempted to further target company's customers.
Details — https://thehackernews.com/2021/06/solarwinds-hackers-breach-microsoft.html

‎-آگاهي رساني امنيت سايبري-

Up2date 4 Defence Today,
Secure Tomorrow
@CisoasaService
1400.04.07

319 viewsAlireza Ghahrood, 06:23

CISO as a Service

https://github.com/archanchoudhury/Detection-Rule-Dump

‎-آگاهي رساني امنيت سايبري-

Up2date 4 Defence Today,
Secure Tomorrow
@CisoasaService
1400.04.07

GitHub

GitHub - archanchoudhury/Detection-Rule-Dump: This is the One Stop place where you can several Detection Rules which can help you…

This is the One Stop place where you can several Detection Rules which can help you to kick start your journey on SIEM, SOC work. - archanchoudhury/Detection-Rule-Dump

275 viewsAlireza Ghahrood, 06:24

CISO as a Service

4_5962959424979994922.pdf

657.7 KB

این متن پیش نویس نهایی طرح جنجالی مجلس برای محدودیت اینترنته

طرحی که به گفته ی خیلی از مردم حتی اصولگرایان منجر به وقوع حوادثی مشابه آبان می شه

‎-آگاهي رساني امنيت سايبري-

Up2date 4 Defence Today,
Secure Tomorrow
@CisoasaService
1400.04.07

329 viewsAlireza Ghahrood, edited 07:57

CISO as a Service

Cisco Adaptive Security Appliances (ASA) have been actively targeted by hackers following the release of exploit code for a security vulnerability (CVE-2020-3580)
Read: https://thehackernews.com/2021/06/cisco-asa-flaw-under-active-attack.html

‎-آگاهي رساني امنيت سايبري-

Up2date 4 Defence Today,
Secure Tomorrow
@CisoasaService
1400.04.07

The Hacker News

Cisco ASA Flaw Under Active Attack After PoC Exploit Posted Online

An active attack is underway against Cisco Adaptive Security Appliance (ASA) vulnerability after an exploit code was released on the internet.

273 viewsAlireza Ghahrood, 08:01

CISO as a Service