Infosec Standards
NIST SP 800-124 r2:
Guidelines for Managing the Security of Mobile Devices in the Enterprise May 2023
-Business Secure Continuity-
1402.03.29
#DiyakoSecureBow
#businessanalyst #infosec #securitymanagement #security #business
@Engineer_Computer
NIST SP 800-124 r2:
Guidelines for Managing the Security of Mobile Devices in the Enterprise May 2023
-Business Secure Continuity-
1402.03.29
#DiyakoSecureBow
#businessanalyst #infosec #securitymanagement #security #business
@Engineer_Computer
Network Security Channel
The Cybersecurity Manager’s Guide.pdf
🛡 "Nobody cares, nobody understands, and fear drives most of the decisions."
That's the brutally honest reality Todd Barnum opens with in The Cybersecurity Manager's Guide — and after 25+ years leading InfoSec programs, he's earned the right to say it.
What I appreciated most: this isn't another technical manual. It's a leadership road map for the part of the job no certification prepares you for — building a program when you're under-resourced, misunderstood, and largely on your own.
His framework splits the work into the science (the eight domains of InfoSec) and the art — seven practical steps that need surprisingly little budget 👇
🔹 Cultivate relationships — security is won through people, not tools
🔹 Ensure alignment with the business, not against it
🔹 Lay the foundation with a few core cornerstones
🔹 Communicate relentlessly — get the message out
🔹 Give your job away — empower others; it's your only hope to scale
🔹 Organize your InfoSec team intentionally
🔹 Measure what matters — not what's easy to count
The line that stayed with me: organizations pour millions into "best-in-class" tools, yet a decent social engineer still gets in with three well-crafted phishing emails. The gap usually isn't technology — it's culture, communication, and leadership.
My takeaway: the hardest problems in security aren't technical. They're human. This book is for anyone stepping from doing security into leading it.
A great read for new managers, aspiring CISOs, and anyone building a program from scratch. 📑
If you lead a security team — what's the one lesson you wish you'd learned sooner?
#CyberSecurity #InfoSec #SecurityLeadership #CISO #SecurityManagement #BlueTeam #GRC
🔹 Share & Support Us 🔹
📱 Channel : @Engineer_Computer
That's the brutally honest reality Todd Barnum opens with in The Cybersecurity Manager's Guide — and after 25+ years leading InfoSec programs, he's earned the right to say it.
What I appreciated most: this isn't another technical manual. It's a leadership road map for the part of the job no certification prepares you for — building a program when you're under-resourced, misunderstood, and largely on your own.
His framework splits the work into the science (the eight domains of InfoSec) and the art — seven practical steps that need surprisingly little budget 👇
🔹 Cultivate relationships — security is won through people, not tools
🔹 Ensure alignment with the business, not against it
🔹 Lay the foundation with a few core cornerstones
🔹 Communicate relentlessly — get the message out
🔹 Give your job away — empower others; it's your only hope to scale
🔹 Organize your InfoSec team intentionally
🔹 Measure what matters — not what's easy to count
The line that stayed with me: organizations pour millions into "best-in-class" tools, yet a decent social engineer still gets in with three well-crafted phishing emails. The gap usually isn't technology — it's culture, communication, and leadership.
My takeaway: the hardest problems in security aren't technical. They're human. This book is for anyone stepping from doing security into leading it.
A great read for new managers, aspiring CISOs, and anyone building a program from scratch. 📑
If you lead a security team — what's the one lesson you wish you'd learned sooner?
#CyberSecurity #InfoSec #SecurityLeadership #CISO #SecurityManagement #BlueTeam #GRC
🔹 Share & Support Us 🔹
📱 Channel : @Engineer_Computer
❤1👍1