A Framework for Proving Security Control EffectivenessChris Strand of Carbon Black Outlines an Approach
Organizations in all sectors need a framework for proving the effectiveness of security controls through the various stages of the threat lifecyle, says Chris Strand of Carbon Black.
In a video interview at Information Security Media Group's recent Fraud & Breach Prevention Summit: Toronto, Strand discusses:
- Steps in determining the stages of a threat;
- Asset management in the cloud;
- Building a more proactive approach to risk management.
Strand is senior director, compliance strategy, and security risk and compliance officer at Carbon Black. With more than 20 years of information technology and compliance experience, he oversees the development of enterprise network and application security solutions.