From DevOps to DevSecOps – SDLC
What is DevOps:DevOps is the combination of cultural philosophies, practices, and tools that increases an organization’s ability to deliver applications…
Learning, Sharing, Creating
What is DevOps:DevOps is the combination of cultural philosophies, practices, and tools that increases an organization’s ability to deliver applications…
Since NIST 800-53 was first introduced, the number of controls has greatly expanded; the initial version of 800-53 contained approximately…
This post is to clarify the different between CSF Tiers and Maturity level. A security maturity model is a set…
Still Under Writing… A Threat and Risk Assessment analyzes a software or hardware system for vulnerabilities, examines potential threats associated…
NIST Framework Components The Cybersecurity Framework consists of three main components: The Framework Core provides a set of desired cybersecurity…
Layered Security & Defense In Depth A layered approach to security can be implemented at any level of a complete…
Security Architecture Roadmap
One of the most recent and wide-ranging laws impacting the security profession globally is the European Union’s General Data Protection…
When cyber security professionals talking about related frameworks, it always comes to two which is ISO and NIST. There are…
Enterprise Security Architecture (ESA) is a relatively new concept to most business & IT stakeholders. However it is gaining an…
A Brief History of Enterprise Architecture (From Arnab Chattopadhaya ‘s Enterprise Security Architecture) Enterprise Architectural Methodologies • Consortia-developed Frameworks – ISO…