Hi Bruce, I am studying for the new IT section of the Certified Public Accountant (CPA) exam. I have limited background in formal IT education since I was an accounting major. The CPA Exam Section ISC discusses Cybersecurity and the corresponding Data Stds, Regulations, and Frameworks A lot of videos that discuss NIST use fancy vocabulary assuming that most members of the audience already know the fundamentals; you tend to get lost in the advanced English jargon. I've already seen your NIST CSF podcast video; it was really beneficial for someone like me who knows nothing about cybersecurity. I am not required to go in depth since its extensive knowledge "mile long; inch deep" of concepts. Without your NIST podcast, I would've needed to watch 5 supplemental videos to understand one main supplemental video that aided in understanding a certain chapter. In my opinion, your discussion was way better than most lectures on here. If you could maybe cover NIST Privacy Framework video, then I would appreciate it.
I feel like you could have expanded more past reading the slides. Common presentation gaff - no biggie - but I'd like more in-depth, SME interpretation... just food for thought on your future lessons :)
Hi, we are going to be upgrading an operating system and wondering what controls will be impacted the most because we need to gather artifacts for an assessment
Helpful but too much postulation and speculation in your chatter - like "I think..." or "maybe there's something in there" etc. Does not seem well rehearsed, you could've take more prep time with this, to resolve your free-form speculation and tighten your focus - could be much tighter and more helpful as an overview if you did.
Great video very informative. What are the NIST overall controls determination languages for Privacy controls assessment? Are they going to be the same as that of Security controls assessment (Pass,fail, satisfied, not satisfied).
Dec 2019, Revision 4 will be replaced with revision 5 (supposedly). Some departments/agencies will still be using rev4 while they transition. There are still some organizations just getting off DIACAP (which was supposed to be gone YEARS ago).
Hey Bro, i have networking experience but decided to get into security this year. I currently have CAP, Security +, network plus and CEH. I’m looking to get into Assessment? How do I proceed.
Hi Bruce, I am looking for a job in Compliance, recently passed CISSP and CISA. I don't have experience but i am sure i will pick up fast. If Bruce or anyone can get me a role, would be appreciated. I am open to relocation anywhere in N east and Midwest.
